dev-desktop-sandbox
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill describes a local development workflow for sandboxing Electron instances. It utilizes standard command-line tools like
makeandbunxto manage local environment variables, files, and network ports. No malicious patterns, remote data exfiltration, or obfuscation were identified. - [COMMAND_EXECUTION]: The workflow involves executing build and run commands such as
make devandbunx electron. These are standard development operations performed within a locally defined, temporary environment to ensure process isolation. - [CREDENTIALS_UNSAFE]: The documentation explicitly mentions that
providers.jsoncmay contain API keys and notes thatsecrets.jsonis intentionally excluded from the sandbox copy process, demonstrating a security-conscious approach to local development data handling.
Audit Metadata