bun-browser
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill's behavior aligns with its stated purpose of browser automation verification and QA.
- [EXTERNAL_DOWNLOADS]: The installation process fetches dependencies from official repositories. The use of bun.sh and Playwright (Microsoft) involves well-known and trusted technology services.
- [COMMAND_EXECUTION]: The tool executes browser processes via Playwright and manages its own background daemon. These actions are core to the functionality and do not involve unauthorized privilege escalation or persistence outside the current user session.
- [DATA_EXFILTRATION]: Provides a mechanism to save session state locally. This data is handled within the user's local filesystem and is not transmitted to external, unauthorized endpoints.
- [REMOTE_CODE_EXECUTION]: Automated scans flagged the Bun installation script. This reference is part of an informational error message pointing to the official, trusted Bun installer, which is safe according to the trusted service recognition rules.
Audit Metadata