uv-expert
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill functions as a developer tool assistant for the
uvpackage manager. All demonstrated workflows (initialization, dependency addition, script execution) are consistent with the documented purpose and use standard industry practices for Python development. - [COMMAND_EXECUTION]: The skill uses the
bashtool to executeuvcommands based on user input inSKILL.md. This is the primary intended functionality of the skill, enabling automated environment setup and dependency management. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing untrusted instructions from
$ARGUMENTSand using them to execute shell commands via thebashtool. - Ingestion points:
$ARGUMENTSvariable inSKILL.md. - Boundary markers: Absent; there are no delimiters or instructions to ignore embedded commands in the processed data.
- Capability inventory: The skill has access to
Bash,Write,Edit,Glob, andGreptools as defined in the YAML frontmatter ofSKILL.md. - Sanitization: Absent; the skill does not perform validation or escaping on the user-provided arguments before command construction.
Audit Metadata