python-standards
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [GENERAL] (SAFE): No malicious instructions, prompt injection markers, or obfuscation techniques were detected across any of the files.
- [EXTERNAL_DOWNLOADS] (LOW): The skill references standard Python dependency management tools (uv) and packages (httpx, pydantic, pytest, ruff, mypy). These are industry-standard tools from trusted ecosystems. The use of 'uv add' and 'uv sync' is standard practice for the intended task.
- [COMMAND_EXECUTION] (LOW): The skill provides bash command snippets for linting, formatting, and testing (e.g., 'uv run ruff check'). These commands are executed locally for development purposes and do not point to untrusted remote sources.
- [INDIRECT_PROMPT_INJECTION] (LOW): While the skill is intended to review or write Python code (an ingestion point for untrusted data), it promotes the use of security-focused tools like 'flake8-bandit' (the "S" rule in ruff) to identify vulnerabilities, which is a defensive best practice.
Audit Metadata