Back to skill
Skillv2.0.1
VirusTotal security
testcase-generator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 2:07 AM
- Hash
- c12becd54bbbcb632590f993ef51d0f3f9ade31f8a8da3996a558c7319028851
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: testcase-gen Version: 2.0.1 The skill bundle is designed to extract sensitive database credentials and records from MySQL and Redis by parsing local application configuration files (e.g., Spring Boot's application.yaml). While the stated purpose is generating test cases, the 'scripts/data_reader.py' script and 'SKILL.md' instructions grant the AI agent broad access to potentially sensitive data and include methods for executing arbitrary SQL queries. These high-risk capabilities are plausibly related to the tool's function but lack sufficient access controls, making the bundle a significant vector for data exposure if misused.
- External report
- View on VirusTotal