drift-testing
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill manages a feedback loop for API testing by executing the
driftCLI and theprismmock server. These commands are integral to the skill's purpose of verifying API conformance. - [EXTERNAL_DOWNLOADS]: Installation steps and helper scripts download necessary components from trusted registries like npm and the vendor's official infrastructure at
pactflow.io. These operations are transparently documented as part of the tool's setup process. - [DATA_EXFILTRATION]: While the skill interacts with sensitive data such as API tokens, it follows security best practices by using environment variables. Network operations are restricted to communication with the user-specified API endpoint or a local mock server.
Audit Metadata