Java changing with tests
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent instruction-only Java development workflow that asks the agent to make small code changes and run normal project tests.
This skill appears safe and straightforward for Java development tasks. Before installing, be aware that it is intended to edit repository files and run the project’s test commands, so review changes before committing and use it on trusted codebases.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may change files in the repository and run project tests, which can execute code already present in that project.
The skill directs the agent to modify Java code and run build/test commands. This is expected for a Java change-and-test workflow, but it is still local mutation and command execution that users should notice.
Implement: minimal edits. ... run targeted tests - run `mvn -q test` (or module-scoped equivalent)
Use it in repositories you trust, review the proposed diff, and prefer targeted test commands before broader test suites.