qa
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the 'playwright' package and the Chromium browser engine. These are well-known resources provided by Microsoft and are essential for the skill's primary function. Installations are performed only after explicit user confirmation.
- [COMMAND_EXECUTION]: Executes shell commands to manage the local development environment, including checking tool versions and starting the application server (e.g., 'npm run dev'). These commands are standard for local software testing workflows.
- [REMOTE_CODE_EXECUTION]: Generates and executes Playwright scripts locally to simulate user interactions within a browser. The generated code is used to verify the functionality of the local application and does not involve executing arbitrary code from untrusted remote sources.
- [CREDENTIALS_UNSAFE]: The instructions include a specific security constraint to avoid reading sensitive secrets from '.env' files, instead directing the agent to use '.env.example' or specific test credentials provided in campaign configurations.
Audit Metadata