nanogpt
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill installs widely used, reputable Python libraries (torch, transformers, datasets, tiktoken, wandb, tqdm) from official registries like PyPI. These are standard dependencies for machine learning projects.
- [COMMAND_EXECUTION] (SAFE): The provided commands involve running local Python scripts for data preparation (
prepare.py), training (train.py), and text generation (sample.py). These operations are consistent with the skill's stated educational and development purpose. - [DATA_EXPOSURE] (SAFE): No patterns of sensitive data access (e.g., SSH keys, AWS credentials) or unauthorized data exfiltration were found. Network activity is limited to standard ML tasks such as downloading weights from Hugging Face or logging metrics to Weights & Biases.
- [DYNAMIC_EXECUTION] (SAFE): The skill mentions
compile = Truefor PyTorch 2.0, which utilizes JIT compilation for model optimization. This is a trusted internal feature of the PyTorch library and does not constitute a security risk in this context.
Audit Metadata