Skills
skills/akillness/oh-my-unity3d/autoresearch/Gen Agent Trust Hub

autoresearch

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads the uv package manager from https://astral.sh/uv/install.sh, which is a well-known service for fast Python dependency management.
  • [REMOTE_CODE_EXECUTION]: Installation scripts for the uv package manager are fetched and executed using curl | sh in SKILL.md and scripts/setup.sh. These downloads target an established service.
  • [COMMAND_EXECUTION]: The skill uses various bash scripts to manage the ML lifecycle, including GPU hardware checks via nvidia-smi, process management with timeout, and git operations for experiment ratcheting. These are standard operations for an ML experimentation framework.
  • [EXTERNAL_DOWNLOADS]: Data preparation involves downloading the FineWeb-Edu dataset from Hugging Face's infrastructure via the prepare.py script.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 03:26 AM