Flutter Test Runner
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill executes
flutterCLI commands and a local repository script (./run-integration-test.sh). These are standard operations for a test runner and pose no unusual risk in a development context. - [EXTERNAL_DOWNLOADS] (LOW): The skill instructions include
flutter pub get, which downloads dependencies from the official Dart package registry (pub.dev). While this involves external code, it is the standard and expected behavior for Flutter projects. - [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes output from test runs. While test failure messages could theoretically contain malicious instructions, the capability for damage is low given the restricted nature of the output and the specific development context.
Audit Metadata