frontend-testing
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill requires the execution of shell commands like
pnpm testandpnpm analyze-componentto verify and analyze frontend code. These commands are standard for the project's development workflow and are used for testing and complexity analysis. - [PROMPT_INJECTION]: The skill has a vulnerability surface for indirect prompt injection as it processes frontend source code to generate executable test scripts. A malicious file could potentially attempt to influence the agent's output during the generation or execution process. Ingestion points: Frontend components, hooks, and utility files analyzed by the agent. Boundary markers: None mentioned in the instructions. Capability inventory: Shell command execution via
pnpmand file system access. Sanitization: None implemented. - [EXTERNAL_DOWNLOADS]: Documentation references the use of the
nocklibrary to mock responses fromapi.github.com. This is a standard testing pattern for interacting with well-known external services and does not involve actual remote script execution.
Audit Metadata