write-tests
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured guidance for standard software development tasks without attempting to bypass security constraints or execute unauthorized commands.
- [DATA_EXPOSURE_AND_EXFILTRATION]: No sensitive information, hardcoded credentials, or unauthorized network operations were found. References to internal Sentry utilities and mock servers are within the expected scope of the vendor's repository.
- [UNVERIFIABLE_DEPENDENCIES_AND_REMOTE_CODE_EXECUTION]: The skill relies on well-known testing frameworks (Vitest, Playwright) and internal vendor packages. No remote scripts are downloaded or executed.
- [INDIRECT_PROMPT_INJECTION]: The skill defines a process where the agent reads existing test files and user instructions to generate code.
- Ingestion points: Existing test files in the project structure and user prompts describing code to be tested.
- Boundary markers: No explicit boundary markers or instructions to disregard embedded commands in the input data are present.
- Capability inventory: The agent uses file system read/write access and the ability to execute test commands via shell.
- Sanitization: Input data is processed directly without explicit sanitization steps mentioned in the skill instructions.
Audit Metadata