uv-tool-management
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill provides instructions to install the 'uv' package manager using a shell script from its official domain (astral.sh) piped into a shell. This is a standard and documented installation method from a well-known service.
- [EXTERNAL_DOWNLOADS]: Facilitates the download and execution of standard Python packages (such as ruff, black, and mypy) from the public Python Package Index (PyPI) via the 'uvx' command.
- [COMMAND_EXECUTION]: Utilizes the 'bash' tool to perform routine development tasks, including environment synchronization, running test suites, and executing local development scripts.
Audit Metadata