barba-js
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/project_setup.pyutility usessubprocess.runto executenpm install. This is an expected and standard behavior for a script designed to initialize a JavaScript-based web project and install its dependencies locally.- [EXTERNAL_DOWNLOADS]: Thescripts/project_setup.pyscript facilitates the download of common web development libraries (@barba/core,gsap, andvite) from the official NPM registry, which is a well-known and trusted service.
Audit Metadata