test-coverage
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill follows standard development practices, such as creating feature branches and using established testing frameworks.
- [COMMAND_EXECUTION]: The skill triggers local test and coverage commands (e.g., Jest, pytest, Go testing) to assess coverage gaps and verify new tests. This behavior is expected for a test-automation skill and does not involve unauthorized privilege escalation or remote execution.
- [PROMPT_INJECTION]: The skill processes project source code and coverage data. Ingestion points: Project source files and coverage reports (SKILL.md). Boundary markers: Not explicitly mentioned in the workflow. Capability inventory: Filesystem write (writing new tests) and command execution (running coverage tools). Sanitization: None specified for input code analysis.
Audit Metadata