qa-regression
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices for handling sensitive credentials by utilizing environment variables (
TEST_EMAIL,TEST_PASSWORD,ADMIN_TOKEN) and GitHub Action secrets instead of hardcoding values. - [COMMAND_EXECUTION]: Uses standard and expected commands for the Playwright ecosystem, such as
npm install,npx playwright install, andnpx playwright test. - [EXTERNAL_DOWNLOADS]: Fetches dependencies and browser binaries from the official NPM registry and Playwright's verified sources, which are recognized as well-known and safe services.
- [DATA_EXFILTRATION]: No evidence of unauthorized data exfiltration. Network requests are confined to the user-defined
BASE_URLandAPI_URLfor testing and cleanup purposes.
Audit Metadata