Skills
skills/laurigates/claude-plugins/configure-package-management/Gen Agent Trust Hub

configure-package-management

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches installation scripts for package managers from official vendor domains: https://astral.sh/uv/install.sh and https://bun.sh/install. These are standard installation methods for the tools the skill is intended to manage.
  • [COMMAND_EXECUTION]: Uses local bash commands to audit project structure (find, grep) and manage package configurations (uv sync, bun install). All executed commands are consistent with the skill's primary purpose of environment configuration.
  • [REMOTE_CODE_EXECUTION]: Contains instructions to pipe remote scripts to a shell (e.g., curl | sh). These patterns are directed at well-known, trusted technology providers (Astral and Bun) and are standard for the tools' official setup procedures.
  • [REMOTE_CODE_EXECUTION]: References official GitHub Actions for CI/CD integration, specifically astral-sh/setup-uv and oven-sh/setup-bun, which are maintained by the respective tool authors.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 12:48 PM