ClawHub

Write Better Tests

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward testing-guidance skill with no hidden install behavior, credential access, networking, or persistence mechanisms.

Reasonable to install for stronger test-writing discipline. Be aware that it encourages red-green proof, so an agent may propose running focused tests or briefly changing local code to confirm a test fails for the old behavior; review the final diff to ensure only intended test and implementation changes remain.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Rogue AgentSelf-Modification, Session Persistence
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Vague Triggers

Medium
Confidence
95% confidence
Finding
The manifest description says to use the skill when Codex is adding, editing, selecting, reviewing, or explaining tests in any repository, and the body says to use it whenever test quality matters. Those triggers are extremely broad and overlap with common development activity, without clear boundaries or negative examples for when the skill should not activate.

Session Persistence

Medium
Category
Rogue Agent
Content
description: Use when Codex is adding, editing, selecting, reviewing, or explaining tests in any repository, including mocks, fixtures, snapshots, CI validation, regression coverage, TDD/red-green proof, or readiness claims. Enforces behavior-first test design so tests catch real regressions instead of merely passing the current implementation.
---

# Write Better Tests

Use this skill whenever test quality matters. The goal is not "more tests"; the goal is tests a skeptical maintainer would trust.
Confidence
60% confidence
Finding
Write Better Tests Use this skill whenever test quality matters. The goal is not "more tests"; the goal is tests a skeptical maintainer would trust. ## Core Rule Before saying coverage is good, pro

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal