Back to skill

Security audit

Unit Test Automation

Security checks across malware telemetry and agentic risk

Overview

This skill transparently sets up frontend unit testing and its persistent project changes are disclosed and aligned with that purpose.

Install only in the intended project. Review dependency and lockfile changes, generated Vitest/MSW config, .claude commands, and the Husky pre-commit hook before committing. Keep AUTO_GEN_TEST unset unless you want commits to invoke Claude Code for automatic test generation, and use /gen-unit-test on specific paths when repository source is sensitive.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

46/46 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/check-missing-tests.mjs:33

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/detect-framework.mjs:32