SECURITY REVIEW PROCESS

react-best-practices

React and Next.js performance optimization guidelines from Vercel Engineering. This skill should be used when writing, reviewing, or refactoring React/Next.js code to ensure optimal performance patterns. Triggers on tasks involving React components, Next.js pages, data fetching, bundle optimization,

$ skillvault review react-best-practices

→ Fetching SKILL.md from https://github.com/vercel-labs/agent-skills...

→ Running Stage 1 automated scan...

✓ Stage 1 PASSED — Risk score: 0/100

✓ Stage 2 PASSED — Human review complete

✓ Stage 3 PASSED — Sandbox execution clean

✓ Skill signed and published to registry

✅

Stage 01

Automated Scan

Checked prompt injection, IoC matches, credential paths, shell commands, network calls. Score: 0/100

✅

Stage 02

Human Review

Automated review. Risk: very_low. Score: 0/100.

✅

Stage 03

Sandbox Execution

Skill executed in isolated container. Network traffic and file access logged. Zero deviations from declared behavior.

✅

Stage 04

Cryptographic Signing

SHA-256 hash of skill directory signed via Sigstore keyless signing. Logged in public transparency log.

Full Scan Findings

Prompt injectionCLEAN

Known IoC matchesNONE

Network callsNONE

Credential pathsNONE

Shell commandsNONE

Social engineering0/100

Final verdictAPPROVED

View Security Report Card →