help-center-ui-test
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate automated UI testing on WordPress.com surfaces. It interacts with official vendor domains and well-known services (Linear) using appropriate tools for browser automation and issue tracking.
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool for standard developer workflows, specifically for creating git branches when implementing bug fixes. This behavior is consistent with the skill's stated purpose.
- [PROMPT_INJECTION]: The skill maintains an indirect prompt injection surface due to its interaction with untrusted external data during the testing process. 1. Ingestion points: Browser page content from wordpress.com surfaces and AI-generated support responses. 2. Boundary markers: Absent; the instructions do not specify delimiters for data read from the browser. 3. Capability inventory: Bash tool (git operations), browser control via Claude in Chrome, and issue creation via Linear. 4. Sanitization: No explicit sanitization of ingested web content is performed before processing.
Audit Metadata