knip-deadcode
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): Analysis confirms the skill is composed entirely of Markdown and JSON documentation. No executable scripts, binaries, or active code components are present in the skill package.
- REMOTE_CODE_EXECUTION (SAFE): Reference documentation (specifically in references/perf-use-bun-runtime.md) includes standard installation commands for the Bun runtime (e.g., 'curl | bash' and 'powershell | iex'). These are provided as instructional examples for environment optimization and are not executed by the skill itself.
- COMMAND_EXECUTION (SAFE): The skill documents the use of Knip's file removal flags ('--allow-remove-files') in references/fix-allow-remove-files.md. These commands are presented as part of a legitimate, user-controlled cleanup workflow and do not represent a security risk within the skill's instructional context.
Audit Metadata