test-migration
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides legitimate instructions and patterns for migrating test suites between frameworks such as Selenium, Cypress, and Playwright. All identified commands and configurations are standard for software development and quality assurance workflows.
- [COMMAND_EXECUTION]: The skill documents the use of shell commands for managing test environments and executing tests, including
npm ci,npx playwright test, andnpx cypress run. These are appropriate for the migration task. - [PROMPT_INJECTION]: The skill includes an instruction to ingest project-specific information from
.agents/qa-project-context.md, which creates a surface for indirect prompt injection. This pattern is documented as a standard way to provide context to the agent. - Ingestion points:
.agents/qa-project-context.md(Discovery Questions section) - Boundary markers: Absent
- Capability inventory: Shell command execution via package managers and test runners
- Sanitization: Absent
- [EXTERNAL_DOWNLOADS]: The skill references the installation of browser binaries and dependencies via
npx playwright install --with-deps, which is a standard procedure for the Playwright testing framework.
Audit Metadata