threejs-qa-release
Pass
Audited by Gen Agent Trust Hub on Jul 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes standard Node.js dependencies, specifically
@playwright/testandpngjs, to perform automated browser testing and image processing within the user's project environment. - [COMMAND_EXECUTION]: The instructions guide the agent to execute local scripts and Playwright test suites (e.g.,
node scripts/inspect-threejs-canvas.mjs,npx playwright test) to verify game rendering and logic. These operations are restricted to the local development context and intended project URL. - [SAFE]: The skill promotes secure release practices by instructing the agent to ensure API keys and debug interfaces are not included in production builds. No indicators of prompt injection, data exfiltration, or persistence mechanisms were found.
Audit Metadata