python-env
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the download and installation of Python packages from external registries using the
uvtool. This is the primary intended function of the skill and uses well-known technology. - [COMMAND_EXECUTION]: The skill utilizes Bash to execute
uv,python,mkdir, andlsfor managing virtual environments and running project scripts. - [PROMPT_INJECTION]: An indirect prompt injection surface exists as the skill processes untrusted external data during package management tasks.
- Ingestion points: Package names provided by users and contents of
requirements.txtorpyproject.tomlfiles. - Boundary markers: Absent; no specific instructions are provided to the agent to treat requirement file content or package metadata as untrusted.
- Capability inventory: The agent can install arbitrary packages and execute Python code within the managed environment.
- Sanitization: Absent; there is no explicit validation or sanitization of package names or configuration file content before processing.
Audit Metadata