esbuild

Provides fast JavaScript bundling capabilities for simple projects and library builds, enhancing development efficiency.

Install this skill

64/100

Security score

The esbuild skill was audited on Jun 5, 2026 and we found 10 security issues across 3 threat categories, including 1 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 345

Direct command execution function call

SourceSKILL.md

345	execSync('tsc --emitDeclarationOnly --declaration --outDir dist');

medium line 217

Template literal with variable interpolation in command context

SourceSKILL.md

217	console.log(`Build ended with ${result.errors.length} errors`);

medium line 243

Template literal with variable interpolation in command context

SourceSKILL.md

243	contents: `export const API_URL = ${JSON.stringify(process.env.API_URL)}`,

medium line 257

Template literal with variable interpolation in command context

SourceSKILL.md

257	contents: `export default ${JSON.stringify(classNames)}`,

low line 335

Node child_process module reference

SourceSKILL.md

335	import { execSync } from 'child_process';

low line 123

Access to .env file

SourceSKILL.md

123	'process.env.NODE_ENV': '"production"',

low line 207

Access to .env file

SourceSKILL.md

207	contents: JSON.stringify(process.env),

low line 243

Access to .env file

SourceSKILL.md

243	contents: `export const API_URL = ${JSON.stringify(process.env.API_URL)}`,

low line 189

External URL reference

SourceSKILL.md

189	console.log('Server running on http://localhost:3000');

low line 418

External URL reference

SourceSKILL.md

418	> - [esbuild Docs](https://esbuild.github.io/)

Scanned on Jun 5, 2026

View Security Dashboard

Installation guide →

GitHub Stars 20

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

claude-dev-suite/claude-dev-suite