using-huggingface
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill primarily facilitates interaction with HuggingFace, which is recognized as a well-known service for AI model and dataset management.
- [EXTERNAL_DOWNLOADS]: Demonstrates how to load models and datasets from the HuggingFace Hub. These operations target trusted domains (huggingface.co).
- [CREDENTIALS_UNSAFE]: Encourages the secure use of API keys via environment variables (e.g., process.env.HUGGINGFACE_API_KEY). No secrets are hardcoded in the skill.
- [COMMAND_EXECUTION]: Includes standard commands for package installation (pip install) and repository management (git push), which are typical for the described workflows.
Audit Metadata