testng-skill
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains standard testing patterns and configurations for TestNG. No malicious instructions, obfuscation, or unauthorized access attempts were detected.
- [COMMAND_EXECUTION]: The skill references standard Maven commands (e.g.,
mvn test -DsuiteXmlFile=testng.xml) for running test suites. These are expected and safe within the context of a Java development and testing skill. - [EXTERNAL_DOWNLOADS]: The skill configuration in
reference/playbook.mdincludes standard Maven dependencies (TestNG, Selenium, WebDriverManager, Allure) from the official Maven Central repository. It also utilizes WebDriverManager to manage browser binaries from official vendor sources (Google, Mozilla, Microsoft), which is a well-known and safe practice. - [DATA_EXPOSURE]: Example code in
SKILL.mdandreference/playbook.mdincludes placeholder test credentials (e.g.,admin@test.com,admin123). These are clearly marked as demonstration data for unit tests and do not represent a security risk. - [SAFE]: The
ConfigReaderimplementation usesSystem.getPropertyandgetResourceAsStreamto load environment-specific properties from the local classpath, which is a standard and secure pattern for managing test configurations.
Audit Metadata