VibeSafe Starter — Minimum Security for Vibe Coders

The bundle provides legitimate security utility scripts (audit.sh and checklib.sh) designed to identify vulnerabilities in npm and Python dependencies. It uses standard tools like npm audit, pip-audit, and the OSV.dev API to check for CVEs and scans local files for hardcoded secrets using basic regex patterns. No evidence of data exfiltration, malicious persistence, or prompt injection was found.