Skills
skills/greyhaven-ai/claude-code-config/project-scaffolding/Gen Agent Trust Hub

project-scaffolding

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute local shell scripts (templates/*.sh) that create directory structures and generate configuration files using standard utilities like mkdir, cat, and sed. This is the core functionality of a scaffolding tool.
  • [EXTERNAL_DOWNLOADS]: The generated projects and documentation reference standard package managers (npm, pnpm, uv, pip) to install well-known libraries and frameworks such as FastAPI, Hono, React, and TanStack. These dependencies are standard for the advertised technology stack.
  • [DATA_EXFILTRATION]: No patterns of data exfiltration were detected. The skill explicitly includes security checklists and configuration templates that instruct users to ignore .env files and use secrets management tools like Doppler or Wrangler Secrets, demonstrating a strong security posture.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 12:46 AM