e2e-testing-backend

Covers end-to-end testing patterns for Node.js backend services, ensuring complete user flow verification and multi-service integration.

Install this skill

or

0/100

Security score

The e2e-testing-backend skill was audited on Feb 9, 2026 and we found 45 security issues across 3 threat categories, including 8 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 32

Direct command execution function call

SourceSKILL.md

32	execSync('npm run build', { stdio: 'inherit' });

high line 35

Direct command execution function call

SourceSKILL.md

35	serverProcess = spawn('node', ['dist/index.js'], {

high line 105

Direct command execution function call

SourceSKILL.md

105	execSync('docker-compose -f docker-compose.test.yml up -d', {

high line 114

Direct command execution function call

SourceSKILL.md

114	execSync('npx prisma migrate deploy', { stdio: 'inherit' });

high line 117

Direct command execution function call

SourceSKILL.md

117	execSync('npx prisma db seed', { stdio: 'inherit' });

high line 124

Direct command execution function call

SourceSKILL.md

124	execSync('docker-compose -f docker-compose.test.yml down', {

high line 133

Direct command execution function call

SourceSKILL.md

133	execSync('docker-compose -f docker-compose.test.yml exec -T db pg_isready', {

high line 148

Direct command execution function call

SourceSKILL.md

148	execSync('docker-compose -f docker-compose.test.yml exec -T redis redis-cli ping', {

medium line 68

Template literal with variable interpolation in command context

SourceSKILL.md

68	throw new Error(`Server did not start within ${timeout}ms`);

medium line 217

Template literal with variable interpolation in command context

SourceSKILL.md

217	email: `e2e-${Date.now()}@example.com`,

medium line 227

Template literal with variable interpolation in command context

SourceSKILL.md

227	const response = await fetch(`${API_URL}/api/auth/register`, {

medium line 246

Template literal with variable interpolation in command context

SourceSKILL.md

246	const response = await fetch(`${API_URL}/api/auth/login`, {

medium line 263

Template literal with variable interpolation in command context

SourceSKILL.md

263	const response = await fetch(`${API_URL}/api/users/me`, {

medium line 264

Template literal with variable interpolation in command context

SourceSKILL.md

264	headers: { Authorization: `Bearer ${accessToken}` },

medium line 275

Template literal with variable interpolation in command context

SourceSKILL.md

275	const response = await fetch(`${API_URL}/api/auth/refresh`, {

medium line 289

Template literal with variable interpolation in command context

SourceSKILL.md

289	const response = await fetch(`${API_URL}/api/auth/logout`, {

medium line 291

Template literal with variable interpolation in command context

SourceSKILL.md

291	headers: { Authorization: `Bearer ${accessToken}` },

medium line 298

Template literal with variable interpolation in command context

SourceSKILL.md

298	const response = await fetch(`${API_URL}/api/auth/refresh`, {

medium line 323

Template literal with variable interpolation in command context

SourceSKILL.md

323	const response = await fetch(`${API_URL}/api/auth/login`, {

medium line 336

Template literal with variable interpolation in command context

SourceSKILL.md

336	const response = await fetch(`${API_URL}/api/posts`, {

medium line 340

Template literal with variable interpolation in command context

SourceSKILL.md

340	Authorization: `Bearer ${authToken}`,

medium line 357

Template literal with variable interpolation in command context

SourceSKILL.md

357	const response = await fetch(`${API_URL}/api/posts/${postId}`, {

medium line 358

Template literal with variable interpolation in command context

SourceSKILL.md

358	headers: { Authorization: `Bearer ${authToken}` },

medium line 369

Template literal with variable interpolation in command context

SourceSKILL.md

369	const response = await fetch(`${API_URL}/api/posts/${postId}`, {

medium line 373

Template literal with variable interpolation in command context

SourceSKILL.md

373	Authorization: `Bearer ${authToken}`,

medium line 389

Template literal with variable interpolation in command context

SourceSKILL.md

389	const response = await fetch(`${API_URL}/api/posts?published=true`, {

medium line 390

Template literal with variable interpolation in command context

SourceSKILL.md

390	headers: { Authorization: `Bearer ${authToken}` },

medium line 402

Template literal with variable interpolation in command context

SourceSKILL.md

402	const response = await fetch(`${API_URL}/api/posts/${postId}`, {

medium line 404

Template literal with variable interpolation in command context

SourceSKILL.md

404	headers: { Authorization: `Bearer ${authToken}` },

medium line 411

Template literal with variable interpolation in command context

SourceSKILL.md

411	const response = await fetch(`${API_URL}/api/posts/${postId}`, {

medium line 412

Template literal with variable interpolation in command context

SourceSKILL.md

412	headers: { Authorization: `Bearer ${authToken}` },

medium line 445

Template literal with variable interpolation in command context

SourceSKILL.md

445	requestHeaders['Authorization'] = `Bearer ${token}`;

medium line 448

Template literal with variable interpolation in command context

SourceSKILL.md

448	return fetch(`${API_URL}${path}`, {

medium line 465

Template literal with variable interpolation in command context

SourceSKILL.md

465	throw new Error(`Login failed: ${response.status}`);

low line 26

Node child_process module reference

SourceSKILL.md

26	import { execSync, spawn, ChildProcess } from 'child_process';

low line 99

Node child_process module reference

SourceSKILL.md

99	import { execSync } from 'child_process';

low line 37

Access to .env file

SourceSKILL.md

37	...process.env,

low line 213

Access to .env file

SourceSKILL.md

213	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 315

Access to .env file

SourceSKILL.md

315	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 424

Access to .env file

SourceSKILL.md

424	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 45

External URL reference

SourceSKILL.md

45	await waitForServer('http://localhost:3001/health', 30000);

low line 213

External URL reference

SourceSKILL.md

213	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 315

External URL reference

SourceSKILL.md

315	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 424

External URL reference

SourceSKILL.md

424	const API_URL = process.env.API_URL ?? 'http://localhost:3001';

low line 479

External URL reference

SourceSKILL.md

479	API_URL=http://localhost:3000 npm run test:e2e

Scanned on Feb 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

openclaw testing backend backend-developer qa-engineer devops-sre docker postgresql redis development

majiayu000/claude-skill-registry