devenv
Pass
Audited by Gen Agent Trust Hub on May 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill configures the environment to fetch packages from the official NixOS GitHub repository (nixpkgs-unstable), which is an established and trusted source for software distributions.
- [SAFE]: Examples provided for database and service configuration correctly utilize environment variables for credentials (e.g., PGPASSWORD, DATABASE_URL) rather than hardcoding sensitive information.
- [SAFE]: The execution of internal scripts and tools (e.g., devenv, uv, django-admin) is consistent with the skill's stated purpose of managing local development environments.
- [SAFE]: No obfuscation, data exfiltration patterns, or malicious prompt injection attempts were detected across the skill's documentation or configuration files.
Audit Metadata