helpmetest-validator
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: Analysis of the skill instructions and metadata revealed no evidence of malicious patterns, credential exposure, or unauthorized network activity. All tools and references are associated with the author 'help-me-test'.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8) as it is designed to ingest and process untrusted external data in the form of test content and feature artifacts.
- Ingestion points: Test ID, test content, and feature artifacts as defined in the Input section of SKILL.md.
- Boundary markers: Absent; there are no specific delimiters or instructions for the agent to ignore commands that might be embedded within the test content being validated.
- Capability inventory: The skill invokes vendor tools (mcp__helpmetest-*) and is instructed to perform stateful updates to feature artifacts upon a successful validation pass.
- Sanitization: No input sanitization or validation of the test scripts' content is performed prior to the logic-based assessment steps.
Audit Metadata