qa-testing-nunit
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references external Docker images from a specific container registry (reg.corp.swiftcom.uk) in its database launcher template (assets/nunit-database-launcher-template.cs).
- [COMMAND_EXECUTION]: The workflow and templates involve executing shell commands such as 'dotnet test' and 'dotnet migrateup', and managing container lifecycles through the Testcontainers library.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it processes user-supplied test requirements to generate code. 1. Ingestion points: User-provided feature intent in the SKILL.md workflow. 2. Boundary markers: Not explicitly implemented in the generation logic. 3. Capability inventory: Execution of dotnet CLI and Docker management via code templates. 4. Sanitization: Not present in the provided templates.
Audit Metadata