Skills
skills/fredericosantos/skills/astral-ruff/Gen Agent Trust Hub

astral-ruff

Pass

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: LOWCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION] (LOW): The skill instructs the agent to execute specific CLI commands for code analysis and formatting. Evidence: ruff check, ruff format, and uv run ruff throughout SKILL.md.
  • [EXTERNAL_DOWNLOADS] (LOW): The skill suggests the use of uvx ruff, which downloads the ruff package from the standard PyPI registry. Evidence: uvx ruff rule in SKILL.md.
  • [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes local Python source code and has the capability to modify files via auto-fixes. Evidence: 1. Ingestion points: ruff check . reads local files. 2. Boundary markers: Absent. 3. Capability inventory: File-write operations via ruff --fix and command execution. 4. Sanitization: Absent. The risk is minimized because the agent uses the deterministic ruff tool rather than reasoning over the content of the data for its primary actions.
Audit Metadata
Risk Level
LOW
Analyzed
Feb 16, 2026, 03:19 AM