bandit_pip_audit
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary purpose is to enhance security by identifying vulnerabilities in Python code and dependencies. No malicious instructions or hidden patterns were detected.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing 'bandit' and 'pip-audit' from PyPI. These are well-known and trusted security tools maintained by the community.
- [COMMAND_EXECUTION]: Instructions involve standard command-line usage for auditing local project files ('backend/', 'requirements.txt'). There are no signs of arbitrary command execution or privilege escalation.
Audit Metadata