The Agent Skills Directory

[COMMAND_EXECUTION]: The CoverageAnalyzer class invokes subprocess.run with a user-supplied test_command, enabling the execution of arbitrary binaries. While necessary for coverage analysis, this is a potential security risk if the command is not validated.\n- [PROMPT_INJECTION]: The skill analyzes external code files, which is an ingestion point for indirect prompt injection. Maliciously crafted content within these files could manipulate the test generation process.\n- Ingestion points: Source code is read from the filesystem in the _analyze_python method of the TestGenerator class.\n- Boundary markers: There are no boundary markers or 'ignore' instructions implemented to prevent the agent from following instructions embedded in the analyzed code.\n- Capability inventory: The skill has access to the local filesystem and the ability to execute system commands.\n- Sanitization: The skill does not perform sanitization of the analyzed source code before using it to generate tests.

unit-testing-test-generate