Skills
skills/codeceptjs/skills/migrate-protractor-to-codeceptjs/Gen Agent Trust Hub

migrate-protractor-to-codeceptjs

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to run npx codeceptjs commands for initialization, configuration validation, and test execution. These are standard operations for the CodeceptJS framework.
  • [EXTERNAL_DOWNLOADS]: The migration workflow involves installing CodeceptJS and automation drivers (Playwright or WebDriver) from official package registries, which are trusted sources within the ecosystem.
  • [PROMPT_INJECTION]: The skill processes project-specific data such as Protractor configuration and specification files. While this presents a surface for indirect prompt injection, the skill includes verification phases to mitigate risks. 1. Ingestion points: Protractor configuration and spec files. 2. Boundary markers: None specified for ingested code. 3. Capability inventory: Command execution, file system writes, and browser control. 4. Sanitization: Verification through dry-run and live execution checkpoints.
  • [SAFE]: The skill promotes secure practices by replacing hardcoded parameters with environment variables (process.env) and using built-in authentication helpers for sensitive operations.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 12:20 PM
Security Audit — agent-trust-hub — migrate-protractor-to-codeceptjs