Back to skill

Security audit

junit-test-generator

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed JUnit test generator, but generated tests can execute SQL from JSON input against a Spring database without strong safety limits.

Install only if you will use trusted JSON test-case files. Review generated Java before compiling or running it, run Maven with an isolated test profile and disposable database, and check setup/teardown SQL for destructive statements such as DROP, TRUNCATE, ALTER, broad DELETE, or UPDATE.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill advertises and documents file-reading and file-writing behavior, yet no explicit permissions are declared. That creates a trust and policy gap: an agent or reviewer may invoke the skill without realizing it can access local files and generate artifacts into the repository. In this context, the risk is increased because the skill also participates in an automated pipeline that consumes external JSON and writes generated test code into executable test directories.

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The generator emits Java tests that execute setup and teardown SQL taken directly from the parsed test case data via jdbcTemplate.execute(...). Because the skill processes JSON-derived input and turns it into executable database actions without validation, an attacker or untrusted test-case author could cause destructive or unauthorized database modifications when the generated tests are run.

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
The generated test class autowires JdbcTemplate and embeds SQL execution capability, expanding the skill from code generation into database mutation. In the context of a JSON-to-test generator, this hidden side effect is dangerous because users may reasonably expect generated tests to exercise APIs only, not execute arbitrary database statements sourced from input data.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The documentation omits a prominent warning that generated tests may automatically execute setup/teardown MySQL SQL statements and write files into the project. This is dangerous because untrusted or malformed JSON test cases could lead to destructive database changes during test execution, and generated tests may be committed or run in CI without operators understanding those side effects. The skill context makes this more dangerous, not less, because its purpose is to transform externally supplied test-case content into executable code and then run it with Maven.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.