bootstrap-project

Pass

Audited by Gen Agent Trust Hub on Jun 25, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill implements best practices for local development tools by instructing the agent to never touch or stage secrets, environment files (.env), private keys, or credentials.
  • [SAFE]: The workflow emphasizes user sovereignty, requiring explicit confirmation before modifying existing project identities or performing remote operations such as git pushes.
  • [SAFE]: Analysis of the instructions and metadata revealed no evidence of prompt injection, data exfiltration, or malicious obfuscation techniques.
  • [SAFE]: The skill operates on local repository files and does not fetch or execute external code from remote sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 25, 2026, 05:41 PM
Security Audit — agent-trust-hub — bootstrap-project