vitest
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for running tests via the
nlxcommand (e.g.,nlx vitest run), which facilitates local code execution for testing purposes. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it analyzes untrusted local data including test files and execution output.
- Ingestion points: Processes content from
*.test.tsand*.test.tsxfiles and interprets results from test execution logs. - Boundary markers: There are no defined boundary markers or instructions to ignore embedded prompts within the files being analyzed.
- Capability inventory: The agent performs shell execution via
nlx vitestcommands. - Sanitization: No explicit sanitization or content validation is performed on the test data before processing.
Audit Metadata