npm-library-setup
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No security issues detected. The skill consists of documentation, best practices, and project templates for JavaScript and TypeScript development.
- EXTERNAL_DOWNLOADS (SAFE): The skill recommends installing standard, widely-used development tools (bunchee, vitest, typescript, and react) from the official npm registry. These are reputable tools for the intended purpose of building and testing libraries.
- COMMAND_EXECUTION (SAFE): Includes standard npm scripts (e.g., npm run build, npm test) and initialization commands (e.g., npm init). These are expected behaviors for a library setup skill and pose no threat in a controlled development environment.
Audit Metadata