code-quality
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No malicious patterns, such as prompt injection, obfuscation, or unauthorized data access, were detected. The skill provides configuration and usage instructions for reputable tools within the Python ecosystem.
- Indirect Prompt Injection (SAFE): The skill analyzes local Python source code, which is its primary and intended function. While this is a data ingestion surface, the risk of indirect prompt injection via the output of these static analysis tools is negligible. 1. Ingestion points: Local Python source files in the project directory. 2. Boundary markers: None. 3. Capability inventory: Subprocess execution via
uv runand file modification via auto-fix features (black,ruff --fix). 4. Sanitization: None (relies on tool-level parsing).
Audit Metadata