vite

v0.1.0

Configure and optimize Vite 7 for React projects. Covers build tooling, dev server, plugins, HMR, chunk splitting, Environment API, and Rolldown integration....

⭐ 0· 34·0 current·0 all-time

byMisha Kolesnik@tenequm

MIT-0

Download zip

LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

The skill's name and description match the SKILL.md and reference files: all content is about configuring and optimizing Vite 7 for React (plugins, HMR, chunking, env API, rolldown-vite). It requests no unrelated binaries, credentials, or config paths — nothing in the package suggests capabilities beyond Vite configuration guidance.

✓

Instruction Scope

The instructions are developer-facing configuration guidance (examples for vite.config.ts, env files, plugin order, chunking strategies, bundle analysis). They do not direct the agent to read arbitrary system files, exfiltrate data, or access secrets beyond normal project files. The only external data recommendations are conventional (upload source maps to an error tracker, plugin defaults like reading wrangler.jsonc for Cloudflare), which are expected for the described tasks.

✓

Install Mechanism

There is no install spec and no code files that run on the host — this is instruction-only, which minimizes installer risk. No download URLs, archives, or package installs are embedded in the skill itself (the documentation suggests normal package installs you would run locally, e.g., pnpm add -D).

✓

Credentials

The skill declares no required environment variables or credentials. The guidance correctly warns that only VITE_-prefixed variables are exposed to client code; there is no attempt to access unrelated secrets or require keys that don't belong to Vite workflows.

✓

Persistence & Privilege

Skill flags show no elevated persistence (always: false) and the SKILL.md does not instruct modifying other skills or global agent settings. Autonomous invocation is allowed by platform default but not combined with any other risky capability here.

Assessment

This is an instruction-only Vite/React configuration guide and appears internally consistent. Before you rely on it: (1) verify third-party plugins it recommends (@tanstack/*, @cloudflare/vite-plugin, @tailwindcss/vite, rolldown-vite) come from trusted package sources and versions you expect; (2) be careful with source-map uploads and error-tracker endpoints (sourcemaps can leak source code) and avoid publishing VITE_-prefixed secrets to client-side code; and (3) confirm any project-level files the plugins read (e.g., wrangler.jsonc for Cloudflare) are safe to expose to tooling. If you need higher assurance, ask the skill author for provenance (homepage, repository) and exact plugin versions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bxg4k5jv63q7w2gf3093z0n845c62

License

MIT-0

Free to use, modify, and redistribute. No attribution required.

Termshttps://spdx.org/licenses/MIT-0.html

vite

License

Comments