test
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill identifies and executes dynamically determined test runners and linting commands via the Bash tool to verify code behavior during the TDD cycle.
- [EXTERNAL_DOWNLOADS]: The procedure includes instructions to use uv pip install for adding project-specific dependencies required by the implementation tasks.
- [PROMPT_INJECTION]: The skill processes external project files which provides an inherent surface for indirect prompt injection.
- Ingestion points: Project configuration files (e.g., package.json, pyproject.toml) and existing test files.
- Boundary markers: Absent.
- Capability inventory: Bash (command execution), Write/Edit (file modification), and Read (file access).
- Sanitization: No explicit sanitization of external file content before processing.
Audit Metadata