Skills
skills/zenobi-us/dotfiles/create-new-bun-package-repo/Gen Agent Trust Hub

create-new-bun-package-repo

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • REMOTE_CODE_EXECUTION (HIGH): The instructions explicitly direct the user/agent to run bash setup.sh immediately after cloning a repository from an untrusted source (zenobi-us/bun-module).
  • EXTERNAL_DOWNLOADS (HIGH): The skill relies on a GitHub template from zenobi-us, which is not a member of the Trusted GitHub Organizations or Repositories. Downloads from unverified sources that precede execution are high-risk.
  • COMMAND_EXECUTION (MEDIUM): The use of mise trust is instructed. This command explicitly bypasses security prompts in the mise tool, allowing it to execute arbitrary tasks defined in the downloaded mise.toml without further user intervention.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 17, 2026, 06:16 PM