detect-test-smells
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or high-risk code were identified within the skill files. The skill functions as a static reference for developers.\n- [COMMAND_EXECUTION]: The skill provides grep commands for searching code patterns in test files. These are informational and limited to read-only static analysis of the local filesystem.\n- [INDIRECT_PROMPT_INJECTION]: The skill analyzes user-provided PHP test code, creating a surface for potential indirect prompt injection. However, the risk is mitigated by the narrow scope of the detection logic. \n
- Ingestion points: PHP files in the tests/ directory. \n
- Boundary markers: None present. \n
- Capability inventory: Static analysis via grep; no capability for file writing, network access, or dynamic code execution. \n
- Sanitization: No sanitization is performed on the test file content.
Audit Metadata