Skills
skills/caomeiyouren/cmyr-skills-agents/test-engineer/Gen Agent Trust Hub

test-engineer

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the run_in_terminal tool to execute pnpm test and other developer-initiated commands. While necessary for its intended purpose, this provides a mechanism for arbitrary command execution on the host system.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface.
  • Ingestion points: The agent is instructed to read source code using the read_file tool to 'understand logic branches'.
  • Boundary markers: No explicit delimiters or instructions to ignore malicious embedded content within the analyzed files are provided.
  • Capability inventory: The skill possesses high-privilege tools including run_in_terminal (command execution) and create_file (file-system writes).
  • Sanitization: There is no evidence of content sanitization or validation of the data retrieved from external project files.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 01:44 PM