contract-test-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [No Code] (SAFE): The skill consists entirely of a markdown file containing metadata and descriptive text. No executable scripts, configuration files, or installation commands are present.
- [Tool Permissions] (LOW): The skill metadata requests access to powerful tools including
Bash,Write, andEdit. While these are appropriate for a test automation skill, they represent a significant capability tier. However, no malicious instructions leveraging these tools were found in the provided content. - [Prompt Injection] (SAFE): No patterns of prompt injection, instruction overrides, or safety bypasses were detected in the description or triggers.
- [Data Exposure] (SAFE): No hardcoded secrets, API keys, or sensitive file paths were identified.
- [Indirect Prompt Injection] (LOW): As a testing skill, it likely processes external code or contract definitions. This constitutes an ingestion surface (Category 8), but no specific logic for unsafe interpolation was provided in this file.
Audit Metadata