Skills
skills/jmr85/e2e-agent-skills/playwright-cucumber-expert/Gen Agent Trust Hub

playwright-cucumber-expert

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill includes a scaffolding script (scripts/scaffold-bdd.mjs) designed to automatically create the project's directory structure and configuration files.
  • Evidence: The script uses mkdirSync and writeFileSync to generate folders and files like cucumber.js, tsconfig.json, and .github/workflows/cucumber.yml based on the requested complexity level.
  • [CREDENTIALS_UNSAFE]: The configuration templates and scaffolding script include a default hardcoded password for local testing purposes.
  • Evidence: Found testUserPassword: process.env.TEST_USER_PASSWORD || 'password123' in assets/utils/config.ts and generated within scripts/scaffold-bdd.mjs. While this is a common placeholder for local development, it is a best-practice violation.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 11:39 AM