webapp-testing
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/with_server.pyusessubprocess.Popenwithshell=Trueto launch local web servers (e.g.,npm run dev). This is a documented and intended feature for managing the lifecycle of development environments during testing. The command inputs are provided by the user/agent executing the script, and the use of the shell is necessary to support standard shell features like directory changes (cd) and command chaining (&&) commonly found in start scripts.
Audit Metadata