ds-lint
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a standard QA tool that operates on local files. It correctly uses yaml.safe_load() for parsing configuration data, which mitigates risks associated with unsafe deserialization of untrusted input.\n- [COMMAND_EXECUTION]: The skill uses the Bash tool to run a local Python linter. The command is static and uses environment variables (${CLAUDE_SKILL_DIR}) to maintain local scope, ensuring it only executes the intended script within the skill's package.\n- [DATA_EXFILTRATION]: No network activity was detected. The skill does not request tools for internet access (like curl or fetch) and focuses entirely on local filesystem operations.
Audit Metadata