backend-testing
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a template for generating backend tests and follows standard development workflows without introducing security risks.
- [PROMPT_INJECTION]: No malicious instruction overrides, role-play bypasses, or system prompt extraction attempts were detected.
- [DATA_EXFILTRATION]: No unauthorized data access or external transmission patterns were found. The mention of SendGrid's API is consistent with standard integration testing examples for well-known services.
- [CREDENTIALS_UNSAFE]: The skill explicitly instructs users not to hardcode secrets and recommends using separate environment variable files (.env.test), which is a positive security practice.
- [REMOTE_CODE_EXECUTION]: The suggested package installations and scripts use established, reputable testing frameworks (Jest, Pytest, Supertest) from official registries.
- [COMMAND_EXECUTION]: Command patterns are limited to standard software development lifecycle tasks like installing dependencies and executing test suites.
Audit Metadata