testing-integration
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill instructions or code snippets.
- [EXTERNAL_DOWNLOADS]: The skill references installation of standard, legitimate testing libraries including Supertest, httpx, and Pact via official package managers (npm, pip). These are well-known technology services and are considered safe.
- [COMMAND_EXECUTION]: Instructions involve running standard development and testing commands, such as 'npm install', 'npx jest', and starting Docker containers via the Testcontainers library. These actions are aligned with the skill's primary purpose of integration testing.
- [CREDENTIALS_UNSAFE]: The skill correctly demonstrates the use of environment variables (e.g., $API_KEY, $DB_PASSWORD, $PACT_BROKER_TOKEN) for managing sensitive information rather than hardcoding credentials.
Audit Metadata