Skills
skills/laurigates/claude-plugins/configure-integration-tests/Gen Agent Trust Hub

configure-integration-tests

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it ingests data from external project configuration files (e.g., package.json, pyproject.toml, .project-standards.yaml) to determine its logic. Malicious content within these files could potentially influence agent behavior. * Ingestion points: Context gathering in SKILL.md via find and grep commands. * Boundary markers: No delimiters or instructions are provided to ignore embedded instructions in the scanned files. * Capability inventory: The skill uses Bash, Write, Edit, and Glob tools. * Sanitization: No validation or sanitization of ingested file content is performed.
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool for environment discovery (e.g., find, grep, pwd) and to execute package manager commands for dependency installation.
  • [EXTERNAL_DOWNLOADS]: The skill automates the installation of standard, well-known testing libraries (e.g., Supertest, Testcontainers) from public registries like NPM and PyPI.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 08:30 PM