plan-add-test-coverage
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill runs 'bun run test:cov' via Bash. This is a standard operation but relies on the local project configuration being benign.
- [INDIRECT_PROMPT_INJECTION] (LOW): Vulnerability surface detected. 1. Ingestion points: Reads coverage config files (jest.config.js, etc.) and test output from Bash. 2. Boundary markers: Absent. 3. Capability inventory: Bash, Read, Glob, Grep. 4. Sanitization: Absent. Risk is limited to influencing the implementation plan based on external file content.
Audit Metadata