build-keil
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a legitimate build automation tool for Keil MDK projects, performing expected local operations.
- [COMMAND_EXECUTION]: The script scripts/keil_builder.py executes the local compiler UV4.exe via subprocess.run. Evidence: The command is constructed as a list of strings and executed without shell=True, which is a secure practice to prevent shell injection.
- [DATA_EXPOSURE]: The tool reads local .uvprojx XML files to extract build configurations. This is a standard operation for build systems and does not involve sensitive user credentials or data exfiltration.
Audit Metadata