Skills
skills/shipshitdev/skills/project-scaffold/Gen Agent Trust Hub

project-scaffold

Pass

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses subprocess.run within scripts/scaffold.py to perform environment checks and initialize Git repositories using the git init command.
  • [COMMAND_EXECUTION]: The scaffolding process invokes an external local script located within the agent-folder-init skill directory (targeting ~/.codex/skills, ~/.claude/skills, or ~/.cursor/skills) to set up agent-specific documentation.
  • [SAFE]: The script generates comprehensive project manifests and configuration files (e.g., package.json, tsconfig.json, biome.json, and Dockerfile) for multiple frameworks, adhering to standard development practices.
  • [SAFE]: All file system operations and command executions are driven by user input collected through interactive CLI prompts, ensuring the user remains in control of the project's root path and components.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 10, 2026, 09:45 AM