funsloth-runpod
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The training script
scripts/train_sft.pydefines a remote dependency on theunslothlibrary via GitHub rather than a standard package registry. - Evidence:
unsloth[colab-new] @ git+https://github.com/unslothai/unsloth.gitin the PEP 723 dependency block. - COMMAND_EXECUTION (LOW): The troubleshooting guide suggests using elevated privileges to install GPU drivers.
- Evidence:
sudo apt install nvidia-driver-535inreferences/TROUBLESHOOTING.md. - CREDENTIALS_UNSAFE (LOW): The skill instructions facilitate the injection of Hugging Face and Weights & Biases secrets into remote environments.
- Evidence: The environment variable configuration in
SKILL.md(Step 4) forHF_TOKENandWANDB_API_KEY. - PROMPT_INJECTION (LOW): The skill possesses a surface for indirect prompt injection by ingesting external datasets for training.
- Ingestion points:
DATASET_NAME = "mlabonne/FineTome-100k"inscripts/train_sft.py. - Boundary markers: Absent; uses standard chat template formatting.
- Capability inventory: The skill performs model weights saving and potential local script execution via standard ML libraries.
- Sanitization: Absent; the skill relies on the inherent safety of the upstream dataset.
Audit Metadata