pester
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONNO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The documentation in
references/ci-integration.mdrecommends installing the Pester module using the-SkipPublisherCheckflag in multiple CI/CD examples (GitHub Actions, Azure DevOps, Jenkins). Bypassing publisher verification is a security best-practice violation that could permit the installation of untrusted or tampered code in the event of a registry compromise. - [COMMAND_EXECUTION] (INFO): The skill contains comprehensive examples for mocking system commands such as
git,curl, andbash. These are educational demonstrations of the framework's mocking capabilities for unit testing and do not execute unauthorized or malicious code. - [NO_CODE] (INFO): This skill is entirely instructional and consists only of markdown documentation. It contains no executable scripts or active configuration files, which significantly reduces the direct attack surface of the skill itself.
Audit Metadata