Skills
skills/erichowens/some_claude_skills/webapp-testing/Gen Agent Trust Hub

webapp-testing

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill facilitates processing external web content via page.content() and console logs, creating a surface for indirect prompt injection. Malicious instructions on a target website could potentially influence the agent's behavior.
  • Ingestion points: page.content() and page.on('console', ...) in SKILL.md.
  • Boundary markers: Not present in the provided patterns.
  • Capability inventory: Bash, Write, Edit, Read, Glob, and Grep tools.
  • Sanitization: No sanitization logic is included for handling ingested web data.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to run commands like pytest, which is standard for a testing toolkit.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 02:42 PM