test-coverage-improver
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Execution: The skill utilizes local system commands like 'make coverage', 'uv run coverage', and 'pnpm test:coverage' to generate and process coverage reports. These are standard operations within a software development lifecycle for the intended repository.
- File System Interaction: It reads generated coverage artifacts and is designed to write new test files to the 'tests/' directory. These actions are limited to the project's local directory and require user confirmation before any code changes occur.
- Indirect Prompt Injection Surface: The skill evaluate data from external coverage reports, which represents a potential surface for indirect instruction ingestion. * Ingestion points: Reads locally generated coverage.xml and console output from reports. * Boundary markers: Operates on structured data produced by established coverage tools. * Capability inventory: Includes shell command execution and filesystem write access. * Sanitization: The data source is restricted to artifacts produced by the local build and test environment.
Audit Metadata