Skills
skills/morphet81/cheat-sheets/verify-test-cases/Gen Agent Trust Hub

verify-test-cases

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill performs shell operations to identify changed files via git diff and executes test coverage suites using npm, vitest, or jest. These actions are restricted to the local environment and are standard for development automation.
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it ingests and processes source code and test files from the local repository to guide its automated fix-and-run cycle.
  • Ingestion points: Modified test files and source code (SKILL.md Step 4).
  • Boundary markers: No specific delimiters or isolation instructions are present for the analyzed code.
  • Capability inventory: The skill possesses file-write capabilities and command execution through git and npm/npx (SKILL.md Step 7).
  • Sanitization: No validation or sanitization of the code being analyzed is performed prior to processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 03:41 AM
Security Audit — agent-trust-hub — verify-test-cases