tdd-workflows-tdd-red
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill accepts user-provided test requirements through the
$ARGUMENTSvariable to generate code and execution commands. - Ingestion points: The
$ARGUMENTSparameter in the Prompt Template section of SKILL.md. - Boundary markers: Absent; the input is interpolated directly into the prompt string.
- Capability inventory: The skill generates complete source code files (TypeScript, Python, Go, Ruby) and provides instructions/commands for their execution.
- Sanitization: No explicit sanitization or validation of the input arguments is defined in the skill logic.
- [Data Exposure & Exfiltration] (SAFE): The skill includes explicit safety instructions to keep test data isolated and avoid production environments.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): While the skill results in code execution, it uses standard frameworks (Jest, pytest, etc.) and does not download or execute remote untrusted scripts.
Audit Metadata