Skills
skills/elastic/integration-skills/integration-testing/Gen Agent Trust Hub

integration-testing

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [SAFE]: The skill acts as an operating manual for Elastic integration development, following official vendor patterns. It emphasizes security best practices, such as mandatory data anonymization for test fixtures.
  • [DATA_EXPOSURE_AND_EXFILTRATION]: No sensitive data exposure was found. Hardcoded values in examples and mock configurations use non-sensitive placeholders (e.g., test-token, test-key, test-cel-client-id) or RFC 5737 documentation IP ranges. The skill includes explicit instructions to sanitize and anonymize all identifying data before committing to a repository.
  • [EXTERNAL_DOWNLOADS]: External resource references are limited to trusted vendor domains (e.g., docker.elastic.co, github.com/elastic) or well-known services (e.g., google/cloud-sdk). These downloads are documented for legitimate testing purposes, such as running Kafka brokers or cloud storage emulators locally.
  • [COMMAND_EXECUTION]: The skill provides instructions for using the elastic-package CLI tool to build, lint, and test integrations. It also documents the use of txtar scripts that can execute local utility commands (e.g., jq, echo, docker) during test runs. These operations are within the expected scope of the tool's primary purpose.
  • [INDIRECT_PROMPT_INJECTION]: The skill defines an attack surface through the processing of external log data and configuration files.
  • Ingestion points: User-provided log samples in _dev/deploy/docker/sample_logs/ and pipeline fixtures in _dev/test/pipeline/.
  • Boundary markers: The instructions enforce strict naming conventions and directory layouts for all input files.
  • Capability inventory: Authorized capabilities include building integration packages and executing tests that may involve shell commands for verification.
  • Sanitization: The skill mandates the use of the anonymize-logs utility to scrub all identifying information from input data.
  • [DYNAMIC_EXECUTION]: The skill utilizes txtar files to generate and execute test scripts. This dynamic execution is local, deterministic, and part of the documented functionality of the elastic-package testing framework.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 08:43 PM
Security Audit — agent-trust-hub — integration-testing