agent-integration-testing

Pass

Audited by Gen Agent Trust Hub on Apr 4, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it investigates codebase files and incorporates the findings into executable test specifications.\n
  • Ingestion points: Local codebase files accessed via glob and grep (SKILL.md).\n
  • Boundary markers: None specified for the generated test files at ./tests/<name>.md.\n
  • Capability inventory: Shell command execution, Docker operations, NPM scripts, and database queries (SKILL.md, Core Process).\n
  • Sanitization: No validation or sanitization of codebase data is mentioned before it is written into test steps.\n- [COMMAND_EXECUTION]: The skill guides the agent to execute powerful system commands (e.g., docker, npm, sqlite3) to verify software state, providing a broad interface for system interaction based on generated instructions.\n- [REMOTE_CODE_EXECUTION]: The core workflow involves writing procedural commands to markdown files and then executing them via a subagent system. This pattern of dynamic generation and execution represents a significant capability surface for logic derived from codebase investigation.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 4, 2026, 02:26 PM
Security Audit — agent-trust-hub — agent-integration-testing