arch-tsdown-cli
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The provided GitHub Actions CI template ('assets/ci.yml') downloads and installs the '@antfu/ni' utility from the npm registry.
- [COMMAND_EXECUTION]: The skill defines a development entry script ('bin/index.dev.mjs') that executes local TypeScript source files using the 'tsx' runtime API.
- [REMOTE_CODE_EXECUTION]: The documentation for automated releases ('references/core-ci.md') references an external, well-known GitHub Actions workflow from 'sxzz/workflows' to facilitate the npm publication process.
Audit Metadata