python-configuration
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill focuses on secure development practices for Python applications. It provides clear guidance on using
pydantic-settingsto manage environment variables. - [DATA_EXPOSURE] (SAFE): While the skill mentions secrets like
API_KEYandDB_PASSWORD, it does so in an instructional context. It explicitly warns against hardcoding secrets and provides examples using placeholder values. It correctly advises developers to use.envfiles and include them in.gitignoreto prevent accidental exposure. - [EXTERNAL_DOWNLOADS] (SAFE): The code snippets reference standard, well-known Python libraries (
pydanticandpydantic-settings) available on PyPI. There are no instructions for downloading or executing scripts from untrusted external sources. - [COMMAND_EXECUTION] (SAFE): The skill does not contain any malicious command execution patterns. The shell commands provided are standard examples for setting environment variables or creating
.envfiles.
Audit Metadata