generate-snapshot-tests
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted component source files to determine properties and structure for test generation. Malicious instructions embedded in comments or strings within these source files could influence the agent's output.
- Ingestion points: Reads React component source files located via search strategies in
static/app/components/(SKILL.md). - Boundary markers: Absent; there are no delimiters or instructions to ignore embedded prompts in the source files.
- Capability inventory: The agent has the ability to read source files and write new
*.snapshots.tsxfiles to the filesystem. - Sanitization: Absent; the agent directly uses extracted information to generate executable test code.
- [COMMAND_EXECUTION]: The instructions direct the agent to use shell-based tools like Glob or Grep to search the local filesystem for component files based on provided arguments or inferred names.
Audit Metadata