test-anti-patterns
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- Standard Analysis Framework: The skill defines a pragmatic workflow for identifying logical and structural issues in .NET test files, such as missing assertions, synchronization issues (flakiness), and implementation coupling. These are standard code review activities with no security-sensitive side effects.
- Untrusted Data Ingestion: The skill is designed to ingest and analyze external test code provided by the user. This is an intended functionality that creates a surface for indirect prompt injection (e.g., instructions hidden in code comments). However, because the skill does not have access to sensitive tools, network functions, or file modification capabilities, the risk associated with this surface is negligible.
- Vendor-Consistent Tooling: The skill references several internal domain-specific modules (e.g.,
dotnet-test-frameworks,run-tests,exp-test-smell-detection) which align with the 'dotnet' author context and facilitate specialized analysis tasks. - Absence of Malicious Patterns: No evidence of obfuscation, credential harvesting, unauthorized network requests, or persistence mechanisms was detected in the skill instructions.
Audit Metadata