start
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill references an installation script for the 'uv' package manager via a piped shell command (
curl -LsSf https://astral.sh/uv/install.sh | sh). This is presented in error messages and troubleshooting documentation as a prerequisite for the skill's operation and targets the official domain of the tool's provider (Astral). - [COMMAND_EXECUTION]: The skill implements several Bash scripts that manage local project state. These scripts perform operations such as creating a
.claudeconfiguration directory, writing and updating JSON state files usingjq, and parsing execution arguments to determine operational constraints for the autonomous loop.
Audit Metadata