vercel-react-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No prompt injection or behavior override patterns were found in the instructional content.
- [SAFE]: Data handling patterns focus on local performance (localStorage, React state) and include security-positive recommendations, such as authenticating Server Actions.
- [SAFE]: No obfuscation (Base64, zero-width characters, or homoglyphs) was detected in any of the 63 analyzed files.
- [SAFE]: External dependencies and references (e.g.,
better-all,lru-cache,swr) are well-known libraries within the React ecosystem or originate from trusted repositories. - [SAFE]: The skill uses
dangerouslySetInnerHTMLin one guideline (rendering-hydration-no-flicker.md) as a standard React pattern for syncing client-side data before hydration, which is a legitimate architectural use case.
Audit Metadata