packaging-python-libraries
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues or malicious patterns were detected. The skill contains instructional content for standard Python development workflows.
- [EXTERNAL_DOWNLOADS]: The skill references standard Python packaging tools (build, twine) and GitHub Actions from the official Python Packaging Authority (PyPA) repository. These are well-known and trusted resources for the stated purpose of the skill.
- [COMMAND_EXECUTION]: Contains standard shell commands for building and publishing packages (e.g.,
python -m build,twine upload). These commands are relevant to the skill's functionality and do not exhibit malicious intent. - [CREDENTIALS_UNSAFE]: Instructions for using PyPI tokens use safe placeholders (e.g.,
pypi-xxx...) and follow standard security practices for environment variable configuration.
Audit Metadata