chrome-extension-boilerplate-react-vite
Warn
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill uses
git cloneto download code fromhttps://github.com/Jonghakseo/chrome-extension-boilerplate-react-vite.git. This repository owner is not part of the trusted organizations list, making the source unverifiable. - COMMAND_EXECUTION (MEDIUM): The instructions include running
pnpm installandpnpm buildimmediately after cloning the repository. This pattern allows for the execution of arbitrary lifecycle scripts defined in the external repository'spackage.jsonwithout verification.
Audit Metadata