python-development-python-scaffold
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill provides standard shell commands for project initialization (
uv init,git init,uv venv). These are standard developer workflows for setting up a local environment and do not involve unauthorized or hidden execution. - [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard, well-known Python packages (e.g.,
fastapi,django,ruff,pytest) from the official Python Package Index (PyPI). No untrusted external sources or direct script downloads (likecurl | bash) are present. - [CREDENTIALS_UNSAFE] (SAFE): The skill includes a
.env.exampletemplate. It uses clearly marked placeholders for secrets (e.g.,SECRET_KEY="your-secret-key-here") and database URLs. This is a secure best practice for documentation and does not contain hardcoded credentials. - [PROMPT_INJECTION] (SAFE): No attempts to override system instructions, bypass safety filters, or extract system prompts were detected. The instructions are professionally scoped to Python project architecture.
Audit Metadata