agent-testing
Warn
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [CREDENTIALS_UNSAFE]: The
scripts/init-dev-env.shfile contains several hardcoded credentials used to bootstrap a local development and testing environment. This includesAGENT_TESTING_API_KEY="sk-lh-agenttesting0001", a Base64 encodedQSTASH_LOCAL_TOKEN, and other secrets likeAUTH_SECRETandKEY_VAULTS_SECRET. While intended for local mock environments, these represent hardcoded sensitive patterns. - [COMMAND_EXECUTION]: The skill makes extensive use of
osascriptinbot/platform scripts andreferences/osascript.mdto automate third-party macOS applications (Discord, Slack, WeChat, Telegram, etc.). These scripts simulate user input throughkeystrokeandkey codecommands and manipulate the system clipboard. Additionally,scripts/electron-dev.shmanages application lifecycles usingpgrepandkill -9based on process string matching. - [REMOTE_CODE_EXECUTION]: Several scripts involve the dynamic generation and execution of code.
scripts/agent-gateway/run.tsusesBun.buildto compile TypeScript probes into JavaScript at runtime, which are then injected into a browser viaagent-browser eval.scripts/init-dev-env.shalso executes a Node.js script that is dynamically constructed within the shell script using a heredoc. - [EXTERNAL_DOWNLOADS]: The skill facilitates the download of external resources including Docker images (
paradedb/paradedb:latest,redis:7-alpine) and specialized testing tools likeagent-browserandffmpeg. These resources are fetched from well-known registries and official sources.
Audit Metadata