agent-integration-testing
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it investigates codebase files and incorporates the findings into executable test specifications.\n
- Ingestion points: Local codebase files accessed via
globandgrep(SKILL.md).\n - Boundary markers: None specified for the generated test files at
./tests/<name>.md.\n - Capability inventory: Shell command execution, Docker operations, NPM scripts, and database queries (SKILL.md, Core Process).\n
- Sanitization: No validation or sanitization of codebase data is mentioned before it is written into test steps.\n- [COMMAND_EXECUTION]: The skill guides the agent to execute powerful system commands (e.g.,
docker,npm,sqlite3) to verify software state, providing a broad interface for system interaction based on generated instructions.\n- [REMOTE_CODE_EXECUTION]: The core workflow involves writing procedural commands to markdown files and then executing them via a subagent system. This pattern of dynamic generation and execution represents a significant capability surface for logic derived from codebase investigation.
Audit Metadata