test-evidence-review
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary purpose is auditing project quality metrics such as test coverage and evidence completeness.
- [COMMAND_EXECUTION]: Uses allowed tools (Read, Glob, Grep, Write) to identify and analyze files within the local repository, which is consistent with its stated utility.
- [PROMPT_INJECTION]: The skill processes content from local project files which constitutes an indirect prompt injection surface. Ingestion points: story files, test files, and evidence documents in the production/ and tests/ directories. Boundary markers: None present. Capability inventory: File reading (Read, Glob, Grep) and optional report writing (Write) to specific project paths. Sanitization: None identified.
Audit Metadata