cypress-skill
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides scripts/scaffold-project.sh, a utility script that automates the creation of Cypress projects by executing system commands like mkdir, npm init, and npm install.
- [COMMAND_EXECUTION]: Advanced templates in reference/playbook.md demonstrate the legitimate use of execSync for database management and environment setup within the Cypress configuration.
- [EXTERNAL_DOWNLOADS]: The skill refers to several well-known testing packages and the author's own lambdatest-cypress-cli tool to facilitate cloud-based testing.
- [PROMPT_INJECTION]: The skill acts as a code generation assistant which ingests user-provided requirements to produce Cypress tests. This introduces a surface for indirect prompt injection where malicious instructions in a processed webpage or user requirement could influence the generated test code. Evidence: Ingestion point via user prompts; absence of explicit boundary markers in generated templates; capabilities include file system access and shell execution via Cypress tasks; no explicit sanitization shown for user-provided data interpolated into test scripts.
Audit Metadata