chrome-extension-boilerplate-react-vite
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill instructs the user to clone code from 'https://github.com/Jonghakseo/chrome-extension-boilerplate-react-vite.git'. This repository and author are not on the trusted sources list, making the downloaded content unverified.
- COMMAND_EXECUTION (MEDIUM): The setup process includes running 'pnpm install' and 'pnpm dev' on the cloned repository. These commands can execute arbitrary scripts (such as preinstall or postinstall scripts) defined in the repository's package configuration, potentially leading to unauthorized execution of code on the host machine.
Audit Metadata