vitest
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODEEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill's purpose involves auditing local
vitest.config.tsfiles, which serves as a potential ingestion point for indirect prompt injection. However, because the skill consists solely of documentation without any executable scripts or automation tools, there are no internal capabilities to exploit. Ingestion points:vitest.config.ts. Boundary markers: None. Capability inventory: None. Sanitization: None. - [NO_CODE]: The skill is comprised entirely of markdown reference files and does not include any executable code, scripts, or binaries.
- [EXTERNAL_DOWNLOADS]: The documentation references the Coveralls GitHub Action for continuous integration. This reference targets a well-known and trusted service for code coverage tracking.
- [SAFE]: No malicious patterns, obfuscation, hardcoded credentials, or dangerous command execution instructions were detected in the skill files.
Audit Metadata