ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Test Case Generator

v1.0.0

Automatically generate complete unit test code including imports, test cases, mocks, and assertions for Jest, Mocha, or Pytest from given code.

1· 1k·14 current·15 all-time
by@honestqiao
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (generate unit tests for Jest/Mocha/Pytest) match the instructions and the small implementation template in skill.yaml. No unrelated permissions, binaries, or credentials are requested.
Instruction Scope
SKILL.md and the implementation only describe taking code as input and returning test-file source (imports, mocks, assertions). There are no instructions to read system files, environment variables, or to execute user code or transmit data to external endpoints.
Install Mechanism
No install spec is present (instruction-only), so nothing is written to disk or downloaded. This is the lowest-risk install profile and is appropriate for the stated purpose.
Credentials
The skill requires no environment variables, credentials, or config paths. That is proportional to a code-to-test-generator that operates on provided code strings.
Persistence & Privilege
The skill is not always-enabled and requests no elevated privileges or modification of other skills/config; autonomous invocation is allowed by default but is not combined with other concerning capabilities.
Assessment
This skill is coherent and doesn't request credentials or installs; it simply generates test-source text from code you provide. Before using generated tests, review them manually — especially any mocks or injections — and avoid running generated tests against sensitive systems or secrets without inspection. Also note the skill's source/homepage are unknown; if you plan to rely on it heavily, prefer a skill with a verifiable author or open source implementation you can audit.

Like a lobster shell, security has layers — review code before you run it.

latestvk9728gxnj4d70hz9y9kt20r5kn81mp2ctestingvk9728gxnj4d70hz9y9kt20r5kn81mp2cunit-testvk9728gxnj4d70hz9y9kt20r5kn81mp2c

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments