Skills
skills/ahgraber/skills/python-testing/Gen Agent Trust Hub

python-testing

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The utility script scripts/test_pypi_security_audit.py uses subprocess.run to execute the pip-audit tool. This is a legitimate use for verifying the security of the project's dependency tree. The implementation follows security best practices by using a list of arguments and avoiding shell execution (shell=True), which mitigates command injection risks.
  • [EXTERNAL_DOWNLOADS]: The skill's documentation and scripts facilitate the installation of various standard Python development and testing tools (including pytest, nox, pip-audit, pyleak, and pytest-run-parallel) from official package registries. These tools are used for their intended purposes in a development and testing context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 10:38 PM
Security Audit — agent-trust-hub — python-testing