api-testing
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends the installation of industry-standard API testing tools, such as Newman and Bruno CLI, from the official NPM registry.
- [COMMAND_EXECUTION]: Includes standard CLI commands for running test collections and managing infrastructure in automated CI/CD pipelines, such as Docker and various cloud-based CI runners.
- [DATA_EXFILTRATION]: Employs standard network communication (HTTP requests via Postman/Bruno and curl) which is necessary for its primary function of API endpoint validation.
- [CREDENTIALS_UNSAFE]: Demonstrates best practices for secret management by providing guidance on using environment variables and platform-specific secret storage (e.g., GitHub Secrets) instead of hardcoding sensitive information.
Audit Metadata