uv

Pass

Audited by Socket on May 8, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

May 8, 2026, 04:31 AM

Package URL

pkg:socket/skills-sh/openhands%2Fskills%2Fuv%2F@35be5b0352ad8f5cba3b92b3fbb6162b260e9a24

Security Audit — socket — uv