tdd-flow
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust development lifecycle with integrated guardrails, including linting for coding discipline, styling verification, and comprehensive testing requirements. These measures ensure that generated code adheres to established architectural standards.
- [COMMAND_EXECUTION]: Shell command execution is restricted to local development tasks such as running test suites ('npm test', 'npm run test:e2e'), type checking ('npm run typecheck'), and template generation. These operations are essential to the development workflow and are performed within the scope of the project repository.
- [DATA_EXPOSURE]: The skill accesses project-specific configuration and design files (e.g., project-spec.yaml, func-spec.md) to inform its development tasks. There is no evidence of unauthorized access to sensitive system files or credentials, and no external data exfiltration patterns were detected.
Audit Metadata