Skills
skills/microsoft/vscode/project-setup-info-local/Gen Agent Trust Hub

project-setup-info-local

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • Package-Based Project Scaffolding: The skill utilizes npx to execute project generators like create-next-app, create-vite, and yo. These are widely used tools for bootstrapping projects; they involve downloading and executing code from the npm registry to initialize folders, dependencies, and configuration files.
  • External Resource Integration: For MCP server setup, the agent is instructed to fetch implementation details and documentation from modelcontextprotocol.io. This allows the agent to provide up-to-date guidance by ingesting external technical specifications into its context.
  • Integrated Platform Commands: The skill leverages native VS Code command IDs (e.g., python-envs.createNewProjectFromTemplate) to handle Python-specific scaffolding. This approach uses the IDE's built-in capabilities to ensure environments are created according to platform best practices.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 09:07 AM
Security Audit — agent-trust-hub — project-setup-info-local