bootstrap-python-service
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill automates project scaffolding using local shell scripts and standard Python ecosystem tools like uv and FastAPI.
- [SAFE]: It promotes secure configuration management by generating a committed .env file for safe defaults and an ignored .env.local file for local or sensitive overrides.
- [COMMAND_EXECUTION]: Executes the bundled scripts/init_python_service.sh which delegates to shared scaffolding scripts. The main script uses shell arrays and proper quoting to safely handle user-supplied project names and target paths, mitigating command injection risks.
- [EXTERNAL_DOWNLOADS]: Uses the uv package manager to install standard dependencies (fastapi, pydantic-settings, python-dotenv) and development tools (pytest, ruff, mypy) from official package registries.
Audit Metadata