test
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local test suites and validation scripts using Python and Bash. This includes running
pytestfor automated testing and specific tools liketools/mastering/master_tracks.pyortools/sheet-music/transcribe.pyas part of the validation process. - [SAFE]: The skill follows best practices for a test runner, including safe YAML loading (
yaml.safe_load), environment variable use for paths, and cleanup procedures in its end-to-end testing scenarios. Access to~/.bitwize-music/config.yamlis legitimate for its purpose of validating plugin configuration. - [SAFE]: Documentation identifies external dependencies (e.g., AnthemScore, MuseScore, Playwright, and several Python packages like scipy, librosa, and boto3) required by various components of the plugin. These are documented as requirements for the plugin's broader functionality rather than being silently downloaded or executed by the test skill itself.
Audit Metadata