Safety Report

Test Runner

Name: Test Runner
Rating: 5 (8 reviews)
Author: cmanfre7

Write, run, and manage unit, integration, and E2E tests across TypeScript, Python, and Swift using recommended frameworks.

7,684Downloads

52Installs

8Stars

1Versions

API Integration4,971 CLI & Shell Tools1,805 Networking & DNS1,102 Writing & Content1,082

Security Analysis

high confidence

Clean0.04 risk

This is an instruction-only testing helper whose required actions and commands are coherent with its stated purpose; no disproportionate permissions, installs, or credential requests are present.

Feb 11, 20261 files1 concern

Purpose & Capabilityok

The SKILL.md content is a test-runner guide (commands for Vitest, Jest, pytest, XCTest, Playwright, coverage, and testing patterns). There are no unrelated credential or binary requirements declared, and the instructions match the stated purpose.

Instruction Scopenote

Instructions remain within the domain of writing and running tests (installing test deps, running test commands, viewing coverage). Minor issues: a typo appears ('uv pip install pytest...' instead of 'pip install ...' or 'python -m pip install ...') and a few example assertions/APIs may not exactly match specific framework APIs — these are correctness/usability issues, not scope creep. No instructions read or exfiltrate system files, environment variables, or external endpoints beyond standard package installers and test runners (Playwright will download browsers as expected).

Install Mechanismok

No install spec is present (instruction-only). Commands in SKILL.md use package managers (npm/npx, pip, swift) — expected for a test-runner guide. Nothing instructs downloading arbitrary archives from unknown hosts.

Credentialsok

The skill declares no required environment variables, credentials, or config paths. The instructions do not request secrets or unrelated credentials.

Persistence & Privilegeok

always is false and the skill does not request persistent system privileges or attempt to modify other skills or global agent configuration.

Guidance

This skill is a plain testing guide and appears coherent and low-risk. Before running commands from the file: (1) fix the obvious typos (e.g., 'uv pip install...' likely should be a normal pip install invocation), (2) verify package install commands against your project's package manager and lockfiles, and (3) run commands in a controlled/dev environment (or CI) if you want to avoid unintentionally installing dependencies or downloading browsers (Playwright). If you need automated or networked behavior beyond local test runs, inspect or request code that performs that functionality before giving the skill broader privileges.

Latest Release

v1.0.0

Initial release with guides for writing and running tests across major languages and frameworks: - Lists preferred test frameworks for TypeScript/JS, Python, and Swift (unit, integration, E2E). - Provides setup instructions and example commands for Vitest, Jest, pytest, XCTest, and Playwright. - Outlines common workflows (TDD) and test patterns (Arrange-Act-Assert, mocking, async). - Includes example snippets for testing API endpoints and UI components. - Documents coverage commands and strategies for both JavaScript/TypeScript and Python. - Clarifies “what to test” with practical recommendations.

More by @cmanfre7

Debug Pro

25 stars

Design Assets

1 stars

Project Scaffold

1 stars

Web Deploy

0 stars

self-improving-agent

@pskoett · 1,456 stars

Gog

@steipete · 672 stars

Published by @cmanfre7 on ClawHub