tdd-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill includes shell scripts (gather-tdd-metrics.sh, init-tdd-checklist.sh, validate-tdd-compliance.sh) that use standard system utilities (git, find, jq, sed, bc) to process local files and git history. These operations are limited to the project scope and do not pose a security risk.
- [REMOTE_CODE_EXECUTION] (SAFE): No remote code execution or external downloads were found. All scripts and instructions rely on local environment tools.
- [DATA_EXFILTRATION] (SAFE): No network operations to external domains were detected. The only network-related content is documentation for local testing (localhost).
- [PROMPT_INJECTION] (SAFE): The provided AI prompts and agent definitions are designed to enforce development discipline and do not contain instructions to bypass safety filters or extract system prompts.
Audit Metadata