bootstrap-project
Pass
Audited by Gen Agent Trust Hub on Jun 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements best practices for local development tools by instructing the agent to never touch or stage secrets, environment files (.env), private keys, or credentials.
- [SAFE]: The workflow emphasizes user sovereignty, requiring explicit confirmation before modifying existing project identities or performing remote operations such as git pushes.
- [SAFE]: Analysis of the instructions and metadata revealed no evidence of prompt injection, data exfiltration, or malicious obfuscation techniques.
- [SAFE]: The skill operates on local repository files and does not fetch or execute external code from remote sources.
Audit Metadata