playwright
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill permits the
Bashtool, which is standard for executing .NET tests but provides the agent with a general-purpose command execution vector. - PROMPT_INJECTION (LOW): The inclusion of the
mcp__context7__query-docstool to retrieve external documentation creates an indirect prompt injection surface. - Ingestion points: External documentation fetched from
/websites/playwright_dev_dotnetvia MCP tools. - Boundary markers: Absent; the skill does not provide instructions for validating or isolating content from these documentation sources.
- Capability inventory:
Bash(execution),Write/Edit(filesystem modification),Read(file access). - Sanitization: Absent; the agent relies on the inherent trust level of the documentation provided by the library reference.
Audit Metadata