ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Mock Server Generator

v1.0.0

Generate customizable mock HTTP servers with dynamic data, delay, error simulation, and OpenAPI import for API testing and development.

0· 18·0 current·0 all-time
by@sky-lv

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for sky-lv/mock-server-generator.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Mock Server Generator" (sky-lv/mock-server-generator) from ClawHub.
Skill page: https://clawhub.ai/sky-lv/mock-server-generator
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install sky-lv/mock-server-generator

ClawHub CLI

Package manager switcher

npx clawhub@latest install mock-server-generator
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The SKILL.md describes generating mock servers (dynamic responses, persistence, OpenAPI import) which matches the name and description. However the SKILL.md lists 'Node.js 18+' as a requirement while the registry metadata declares no required binaries — an inconsistency that should be clarified (does the agent expect Node to be available and will it run Node processes?).
!
Instruction Scope
The instructions are high-level/natural-language (e.g., 'start mock server on port 3000', 'generate mock from https://.../openapi.json') with no precise tooling, safety constraints, or limits. That vagueness gives the agent broad discretion: it could fetch arbitrary OpenAPI URLs, write files, execute generated code on the host, or spawn network activity. The SKILL.md does not state whether the skill should only output code/config or actually run processes on the user's machine.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, so nothing will be downloaded or written by the installer. That minimizes install-time risk.
Credentials
The skill requests no environment variables or credentials in metadata, which is appropriate for its stated purpose. However, the SKILL.md references Node.js and optional Docker without declaring required binaries; also the ability to import from arbitrary URLs implies network access but no network constraints are declared.
Persistence & Privilege
The skill is not forced-always and uses default autonomous invocation settings. It mentions 'data persistence' as a feature, but does not specify where data will be stored — this is not a platform privilege issue, but something to confirm before running generated servers.
What to consider before installing
This skill is instruction-only and currently vague about what it will actually run. Before installing or enabling it: 1) Ask the author for the implementation details (which CLI/tool it uses or whether it only emits code snippets). 2) Confirm whether the agent will execute commands on your machine or just produce code you must run yourself. 3) Require the skill to declare required binaries (Node.js, Docker) in metadata if it needs them. 4) Be cautious about letting it fetch OpenAPI URLs — limit network access or run generated servers in a sandbox/container and review the generated code before executing. 5) If you need persistent mock data, ask where it is stored and how long it will be kept. If these questions are unanswered, treat the skill as potentially risky and prefer a version with explicit install/run instructions or source code you can review.

Like a lobster shell, security has layers — review code before you run it.

latestvk97626qqy57jtzz8xmcxjz4q2185kp9p
18downloads
0stars
1versions
Updated 3h ago
v1.0.0
MIT-0
@sky-lv
latest
Download

mock-server-generator

Create mock HTTP servers for API testing and development. Generate fake data, define endpoints, and simulate responses without a real backend.

Overview

A skill that helps developers create mock APIs quickly for testing frontend applications, prototyping, or decoupling microservices development.

Features

  • Quick Server Creation: Generate a mock server with a single command
  • Custom Endpoints: Define custom routes, methods, and response bodies
  • Dynamic Responses: Use templates to generate realistic fake data
  • Delay Simulation: Add latency to simulate real network conditions
  • Error Simulation: Easily simulate 4xx/5xx error responses
  • Data Persistence: Store and retrieve mock data across requests
  • OpenAPI Import: Generate mocks from OpenAPI/Swagger specifications

Commands

Start a Basic Mock Server

start mock server on port 3000

Define Custom Endpoints

add GET /api/users returning [{"id": 1, "name": "John"}]
add POST /api/posts with delay 500ms

Import from OpenAPI

generate mock from https://api.example.com/openapi.json

Use Cases

  • Frontend development without a backend
  • API testing and test data generation
  • Prototyping and demo environments
  • CI/CD pipeline testing
  • Microservice decoupling

Requirements

  • Node.js 18+
  • Optional: Docker for containerized deployment

Comments

Loading comments...