testdino-audit

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is designed to analyze untrusted external data in the form of Playwright automated test code. This creates an attack surface for indirect prompt injection, where malicious instructions could be embedded in the code being audited (e.g., in comments or string literals) to influence the agent's behavior or the audit results.
  • Ingestion points: Local Playwright test code files targeted for review (SKILL.md).
  • Boundary markers: There are no explicit instructions or delimiters provided to the agent to treat the ingested code as data only or to ignore embedded instructions.
  • Capability inventory: The skill utilizes the test_audit and health tools to process the target code and submit audit reports (SKILL.md).
  • Sanitization: No sanitization or validation mechanisms are mentioned to filter or escape the contents of the test files before they are processed by the agent or tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 01:39 AM
Security Audit — agent-trust-hub — testdino-audit