tsdown
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION] (HIGH): The skill instructs the agent to run 'npx tsdown-migrate', which fetches and executes code from the npm registry without verification.
- [EXTERNAL_DOWNLOADS] (MEDIUM): The documentation suggests installing numerous Node.js packages (e.g., 'tsdown', 'rolldown-plugin-wasm') from the 'rolldown' organization, which is not in the trusted organization scope.
- [COMMAND_EXECUTION] (HIGH): The skill defines a high-capability surface (Category 8) by processing external configuration ('tsdown.config.ts') and source files while possessing write and execute permissions. Evidence: 1. Ingestion points: 'tsdown.config.ts' and source code files; 2. Boundary markers: Absent; 3. Capability inventory: Execution of arbitrary build hooks (prepare/before/done), CLI command execution, and file system writing; 4. Sanitization: Absent.
- [DATA_EXFILTRATION] (SAFE): No exfiltration patterns detected; S3 and network references are illustrative only.
Recommendations
- AI detected serious security threats
Audit Metadata