Skip to main content

http-mocking

Enforces HTTP mocking best practices using the nock library for accurate API testing and response simulation.

Install this skill

or
56/100

Security score

The http-mocking skill was audited on Feb 12, 2026 and we found 32 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 155

Template literal with variable interpolation in command context

SourceSKILL.md
155.get(`/repos/${owner}/${repo}/hooks`)
low line 30

Webhook reference - potential data exfiltration

SourceSKILL.md
30describe('WebhookProducer', () => {
low line 35

Webhook reference - potential data exfiltration

SourceSKILL.md
35it('should list webhooks successfully', async () => {
low line 46

Webhook reference - potential data exfiltration

SourceSKILL.md
46url: 'https://example.com/webhook',
low line 54

Webhook reference - potential data exfiltration

SourceSKILL.md
54const producer = new WebhookProducer(httpClient);
low line 55

Webhook reference - potential data exfiltration

SourceSKILL.md
55const webhooks = await producer.list('octocat', 'Hello-World');
low line 58

Webhook reference - potential data exfiltration

SourceSKILL.md
58expect(webhooks).toHaveLength(1);
low line 59

Webhook reference - potential data exfiltration

SourceSKILL.md
59expect(webhooks[0].id).toBeDefined();
low line 101

Webhook reference - potential data exfiltration

SourceSKILL.md
101it('should create webhook', async () => {
low line 105

Webhook reference - potential data exfiltration

SourceSKILL.md
105url: 'https://example.com/webhook',
low line 120

Webhook reference - potential data exfiltration

SourceSKILL.md
120const webhook = await producer.create('octocat', 'Hello-World', config);
low line 122

Webhook reference - potential data exfiltration

SourceSKILL.md
122expect(webhook.id).toBeDefined();
low line 139

Webhook reference - potential data exfiltration

SourceSKILL.md
139// test/fixtures/webhookMocks.ts
low line 140

Webhook reference - potential data exfiltration

SourceSKILL.md
140export const mockWebhookResponse = {
low line 146

Webhook reference - potential data exfiltration

SourceSKILL.md
146url: 'https://example.com/webhook',
low line 153

Webhook reference - potential data exfiltration

SourceSKILL.md
153export function mockListWebhooks(owner: string, repo: string, data: any[]) {
low line 186

Webhook reference - potential data exfiltration

SourceSKILL.md
186jest.mock('./WebhookProducer');
medium line 238

Webhook reference - potential data exfiltration

SourceSKILL.md
238.reply(200, [mockWebhookResponse]);
medium line 245

Webhook reference - potential data exfiltration

SourceSKILL.md
245.reply(200, mockWebhookResponse);
low line 37

External URL reference

SourceSKILL.md
37nock('https://api.github.com')
low line 46

External URL reference

SourceSKILL.md
46url: 'https://example.com/webhook',
low line 68

External URL reference

SourceSKILL.md
68nock('https://api.github.com', {
low line 82

External URL reference

SourceSKILL.md
82nock('https://api.github.com')
low line 105

External URL reference

SourceSKILL.md
105url: 'https://example.com/webhook',
low line 112

External URL reference

SourceSKILL.md
112nock('https://api.github.com')
low line 130

External URL reference

SourceSKILL.md
130nock('https://api.github.com')
low line 146

External URL reference

SourceSKILL.md
146url: 'https://example.com/webhook',
low line 154

External URL reference

SourceSKILL.md
154return nock('https://api.github.com')
low line 215

External URL reference

SourceSKILL.md
215nock('https://api.github.com')
low line 236

External URL reference

SourceSKILL.md
236nock('https://api.github.com')
low line 243

External URL reference

SourceSKILL.md
243nock('https://api.github.com')
low line 250

External URL reference

SourceSKILL.md
250nock('https://api.github.com')
Scanned on Feb 12, 2026
View Security Dashboard
Installation guide →
GitHub Stars 106
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawapitestingbackend-developerqa-engineerdevops-sredevelopment
majiayu000/claude-skill-registry