vitest
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- PROMPT_INJECTION (SAFE): The documentation contains standard instructional language for a technical tool. No patterns involving 'Ignore previous instructions', 'DAN', or safety filter bypasses were identified.
- DATA_EXFILTRATION (SAFE): There are no commands that access sensitive user data or exfiltrate environment variables. Examples like
vi.stubEnv('API_KEY', 'test')are standard testing practices for mocking environment variables and do not involve real secret exposure. - COMMAND_EXECUTION (SAFE): The skill documents legitimate Vitest CLI commands (e.g.,
vitest,vitest run,vitest --coverage). No high-risk command execution patterns likesudoor arbitrary shell spawning were found. - EXTERNAL_DOWNLOADS (SAFE): The skill references standard, reputable development dependencies (e.g.,
jsdom,happy-dom,@vitest/coverage-v8) for installation via npm. No downloads from untrusted or suspicious external sources were detected. - OBFUSCATION (SAFE): All content is provided in plain-text Markdown and standard TypeScript/JavaScript. No Base64, zero-width characters, or homoglyph attacks were detected in any of the 18 files.
Audit Metadata