test-strategy
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill instructions and execution model do not contain any malicious patterns such as credential theft, persistence mechanisms, or unauthorized privilege escalation. Its operations are consistent with its stated purpose of test planning.
- [COMMAND_EXECUTION]: The skill uses standard shell utilities like
find,grep, andwcto inventory source and test files. These commands are used for statistical analysis and do not involve complex shell interpolation or high-risk command execution vectors. - [PROMPT_INJECTION]: While the skill processes untrusted project data, which constitutes a surface for indirect prompt injection, the risk is negligible. Ingestion point: Project source and test files (SKILL.md). Boundary markers: None. Capability inventory: Uses
find/grepand writes todocs/test-strategy.md. Sanitization: None. The impact is limited to the generated documentation file.
Audit Metadata