dspy-weave
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious instructions, obfuscation, or unauthorized data access patterns were detected. The skill is an educational guide for using a legitimate developer tool.
- [EXTERNAL_DOWNLOADS]: The skill refers to the installation of the
weaveanddspyPython packages. These are official, widely-used libraries from established technology providers in the AI development community. - [SAFE]: For secret management, the skill correctly advises users to use environment variables (
WANDB_API_KEY) to handle sensitive credentials, which is a standard security best practice to prevent accidental exposure. - [SAFE]: All network references and data transmission instructions target official, well-known service infrastructure (e.g.,
wandb.aifor Weights & Biases).
Audit Metadata