Bun Bundler
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No override markers, role-play injections, or attempts to extract system prompts were detected. The instructions are purely technical and focused on the Bun bundler.\n- [Data Exposure & Exfiltration] (SAFE): The skill does not contain hardcoded credentials, access to sensitive file paths, or network operations to external domains. All file paths used in examples are relative project paths (e.g.,
./src,./dist).\n- [Remote Code Execution] (SAFE): While the skill documents build commands and plugins, these are standard features of the Bun runtime for local development. There are no patterns involving downloading and piping remote scripts to a shell.\n- [Persistence & Privilege Escalation] (SAFE): No commands for modifying shell profiles, cron jobs, or acquiring root/administrator privileges were found.
Audit Metadata