testing
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFENO_CODECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is primarily documentation and illustrative examples of industry-standard testing practices. No malicious instructions, obfuscation, or unauthorized data access patterns were detected.
- [NO_CODE]: This skill does not include any standalone executable scripts or binary files, consisting entirely of Markdown documentation and code snippets intended for copy-pasting or reference.
- [COMMAND_EXECUTION]: The documentation provides standard CLI commands for running test suites (e.g.,
pytest,npm test,npx playwright). These commands are essential for the skill's stated purpose and do not involve unauthorized privilege escalation. - [PROMPT_INJECTION]: The skill defines templates for test creation, which present a theoretical surface for indirect prompt injection if an agent uses them to process untrusted data without proper sanitization.
- Ingestion points: Markdown code blocks in
SKILL.mdserving as templates for test structure. - Boundary markers: No delimiters or boundary instructions are present in the examples.
- Capability inventory: Execution of test runners (
pytest,npm) which have the ability to execute code within the testing environment. - Sanitization: No sanitization or validation methods are demonstrated in the provided examples.
Audit Metadata