testing-skill

Pass

Audited by Gen Agent Trust Hub on Jun 25, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses uv run pytest and uv run python to execute test suites and a local helper script. These commands are restricted to the local development environment and are standard for the described purpose of recording and verifying HTTP cassettes.
  • [SAFE]: The local Python script parse_cassette.py uses yaml.safe_load() to process cassette files, preventing unsafe YAML deserialization vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill references the inline-snapshot repository on GitHub as a dependency/reference, which is a well-known development tool.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 25, 2026, 11:37 PM
Security Audit — agent-trust-hub — testing-skill