bun-init
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes standard Bun CLI commands like 'bun init', 'bun add', and 'bun --version'. These are necessary for the skill's stated purpose and do not involve arbitrary or dangerous command execution.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill suggests installing reputable packages from the official npm registry using the Bun package manager. No untrusted or malicious sources were identified.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded secrets or credentials are present. The skill demonstrates best practices by generating a '.env.example' and ensuring environment files are included in the '.gitignore'.
- [DATA_EXFILTRATION] (SAFE): There are no network requests or commands that would lead to data exfiltration; all operations are local to the project directory.
Audit Metadata