dependency-skill
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill facilitates the installation of standard Python libraries (e.g., fastapi, pydantic, pytest) from the official Python Package Index (PyPI) using the 'uv' tool. All referenced packages are well-established and pose no inherent risk.
- [COMMAND_EXECUTION] (SAFE): Bash commands are restricted to the intended use case of dependency management (init, add, sync, lock, run). No attempts at privilege escalation or execution of arbitrary code were found.
- [DATA_EXFILTRATION] (SAFE): There are no network calls to unknown domains or instructions to read sensitive system files.
Audit Metadata