python-development
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION]: The
SKILL.mdfile includes a command to install theuvpackage manager by downloading a shell script fromhttps://astral.sh/uv/install.shand piping it tosh. While this pattern involves executing remote code, it is the official installation method for a well-known development tool and originates from a recognized technology provider. - [EXTERNAL_DOWNLOADS]: The documentation references the installation of several standard Python libraries and tools via
uvorpip, such asboto3,pydantic,pytest,black, andruff. These are industry-standard dependencies for the stated purpose of the skill.
Audit Metadata