testing
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill requests access to the Bash tool to execute software testing commands such as npm test, pytest, and go test. This is standard functionality for a testing-focused skill.
- [PROMPT_INJECTION]: The skill analyzes local source code using Glob, Grep, and Read tools, which creates a surface for indirect prompt injection. Ingestion points: The agent reads local source and test files as part of the analysis and coverage workflows. Boundary markers: Absent; the instructions do not provide delimiters or warnings to the agent to treat file content exclusively as data. Capability inventory: The skill has access to Bash, Write, Edit, and the Chrome DevTools MCP. Sanitization: Absent; there is no mention of filtering or validating the content of the files before they are processed by the agent.
Audit Metadata