bun-init
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs standard project initialization tasks including directory structure creation, configuration file writing (package.json, tsconfig.json), and dependency management. No malicious patterns or bypasses were detected.
- [DATA_EXPOSURE]: The skill implements secure environment variable management by automatically including
.envand related files in the generated.gitignore. It provides a safe.env.exampletemplate with placeholders and no hardcoded secrets. - [EXTERNAL_DOWNLOADS]: The skill recommends installing standard, well-known packages from the public Bun/npm registry such as
commander,chalk,react, andhono. These are established tools for the project types described. - [COMMAND_EXECUTION]: Uses standard development CLI commands (
bun init,bun add,bun run) which are necessary and expected for the skill's primary purpose of project initialization.
Audit Metadata