swarm-local-e2e
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses various shell commands including
docker,bun,pnpm,lsof,kill, andrmto build, run, and clean up the local testing environment. These actions are standard for the stated purpose of E2E testing. - [DATA_EXFILTRATION]: The skill reads sensitive credentials from local
.envfiles to authenticate against a local API server (localhost). There is no indication of data exfiltration to external or unauthorized domains. - [EXTERNAL_DOWNLOADS]: The skill coordinates the building of Docker images from local source code. No external scripts or unverifiable remote code are downloaded for execution.
- [PROMPT_INJECTION]: The skill processes API responses and Docker logs to verify test results, representing a surface for indirect prompt injection.
- Ingestion points: Data from the local API endpoints and container logs are processed by the agent.
- Boundary markers: No explicit markers or delimiters are used to wrap the ingested content.
- Capability inventory: The skill has the capability to execute shell commands and JavaScript within the local environment.
- Sanitization: No validation or sanitization of the ingested logs or API data is performed before processing.
Audit Metadata