test-master
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill functions as a reference guide for testing methodologies.
- [EXTERNAL_DOWNLOADS]: References official GitHub Actions (e.g.,
actions/checkout) and standard package registries (NPM, PyPI). These originate from trusted organizations and well-known services. - [DATA_EXFILTRATION]: No evidence of unauthorized data transmission or sensitive file access. Code examples use standard placeholder credentials (e.g., 'SecurePass123!') for testing demonstrations, which are benign.
- [PROMPT_INJECTION]: Instructions focus on testing workflows and software quality. There are no attempts to bypass safety filters or override agent constraints.
- [COMMAND_EXECUTION]: Shell commands are restricted to standard development and testing operations (e.g.,
npx playwright test,npm ci,k6 run). - [INDIRECT_PROMPT_INJECTION]: While the skill is designed to process external data like code and API responses, it provides specific boundary markers and structured reporting templates to minimize risks associated with untrusted data ingestion.
Audit Metadata