Skills
skills/automindtechnologie-jpg/ultimate-skill.md/bun-development/Gen Agent Trust Hub

bun-development

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • Unverifiable Dependencies & Remote Code Execution (CRITICAL): The skill attempts to execute a remote script via a pipe to bash.
  • Evidence: curl -fsSL https://bun.sh/install | bash detected in automated scans.
  • Risk: Piping remote scripts directly to a shell is a highly dangerous pattern. It allows the remote server to execute arbitrary commands on the host system without any integrity checks or human review.
  • Source Status: The URL https://bun.sh/install originates from a domain that is not included in the defined list of trusted sources (e.g., GitHub, Google, Microsoft, Vercel). Consequently, this finding is treated as a high-risk remote execution attempt.
Recommendations
  • CRITICAL: Downloads and executes remote code from untrusted source(s): https://bun.sh/install - DO NOT USE
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 16, 2026, 11:36 AM