Skills
skills/openhands/skills/uv/Gen Agent Trust Hub

uv

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides commands to download and execute the official installation scripts for the uv tool from astral.sh (e.g., curl -LsSf https://astral.sh/uv/install.sh | sh). This is the documented and standard installation method for this well-known service.
  • [COMMAND_EXECUTION]: The skill utilizes uv to manage Python environments and execute project-specific commands such as uv run, uv sync, and uv add. These commands are standard for the tool's intended purpose.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the download of the uv binary and project dependencies through the uv package manager from official repositories.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it processes repository files like pyproject.toml and uv.lock to determine the project state.
  • Ingestion points: Reads pyproject.toml and uv.lock as indicated in SKILL.md triggers.
  • Boundary markers: None explicitly defined in the instructions.
  • Capability inventory: Executes arbitrary Python code or CLI tools within the project environment via uv run (documented in SKILL.md).
  • Sanitization: Relies on the uv tool's internal parsing logic for configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 04:30 AM
Security Audit — agent-trust-hub — uv