← Back to Skills Marketplace
arthasking123

AI API Test

by ZhangYang · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
797
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install ai-api-test
Description
Automates API testing, monitors response times, validates data, checks status codes, performs performance and regression tests, and integrates with CI/CD.
README (SKILL.md)

SKILL.md

API Testing Service

自动化 API 测试和监控服务。

能力

  • 接口测试
  • 响应时间监控
  • 状态码检查
  • 数据验证
  • 性能测试
  • 自动化回归测试
  • 集成测试

使用方式

# 测试 API 端点
openclaw run api-test --url "https://api.example.com/users" --method "GET"

# 测试认证
openclaw run api-test --url "https://api.example.com/login" --method "POST" --auth

# 性能测试
openclaw run api-test --url "https://api.example.com" --load --concurrency 10

# 定时监控
openclaw run api-test --url "https://api.example.com" --monitor --interval 60

收费模式

  • 单次测试: $5-15
  • 月度订阅: $50-200
  • 企业套餐: 按需

特性

  • ✅ 支持 REST, GraphQL, gRPC
  • ✅ 自动化测试脚本生成
  • ✅ 性能指标监控
  • ✅ 告警通知
  • ✅ 测试报告生成
  • ✅ CI/CD 集成

开发者

OpenClaw AI Agent License: MIT Version: 1.0.0

Usage Guidance
This package appears inconsistent rather than clearly malicious: the docs advertise a full testing/monitoring product but the code only performs a single HTTP request and writes a markdown report. Before installing or running: - Don't point it at sensitive internal endpoints or production systems until you verify behavior in a sandbox (it will send requests to whatever URL you provide). - Be aware the SKILL.md CLI examples (flags like --monitor, --load, --concurrency) are not implemented; rely on the shipped main.py interface or ask the author for clarification. - The 'auth' mode uses a hardcoded header value ('Bearer test_token') — the tool does not accept user-supplied credentials, which limits usefulness and may be a leftover/demo artifact. Avoid using any 'auth' option with real credentials until the implementation is corrected. - package.json exists but the project is Python-based (main.py); confirm dependency management (requests) and consider running in an isolated environment (container/VM) so the script cannot access other local files. If you intend to use this for production testing, ask the publisher for a clear roadmap: implement real auth handling, documented CLI consistent with SKILL.md, true load/monitoring capabilities, dependency manifest (requirements.txt/pyproject), and CI/CD integration examples. If the developer cannot or will not clarify these mismatches, treat the skill as incomplete/experimental and use it in a restricted/testing environment only.
Capability Analysis
Type: OpenClaw Skill Name: ai-api-test Version: 1.0.0 The `main.py` script directly uses user-provided URLs and HTTP methods from command-line arguments (`sys.argv`) without any input sanitization or validation when making network requests via the `requests` library. This creates a Server-Side Request Forgery (SSRF) vulnerability, allowing an attacker to potentially probe internal network services or access resources not intended for public exposure. While this is a significant security flaw, there is no clear evidence of intentional malicious behavior such as data exfiltration to external servers, persistence mechanisms, or unauthorized system modifications; the reports are saved locally.
Capability Assessment
Purpose & Capability
The skill's name and SKILL.md claim broad capabilities (REST, GraphQL, gRPC, performance testing, monitoring, CI/CD integration, automatic script generation). The included main.py implements only a simple single-request HTTP test (requests.request), measures latency, records status/content length, and writes a markdown report. That is a much narrower capability than advertised, so the manifest overstates functionality.
Instruction Scope
SKILL.md shows example invocations using flags (e.g., --method, --auth, --monitor, --load, --concurrency) and an 'openclaw run api-test' wrapper. main.py expects positional CLI args (action, url, optional method, optional literal 'auth') and implements no monitoring, load/concurrency, GraphQL/gRPC handling, CI integration, or notification features. Also SKILL.md and main.py disagree on CLI semantics. The code does not read additional environment variables or system files, and it only sends requests to the user-supplied URL (no hidden outbound endpoints).
Install Mechanism
There is no install spec; the package is instruction/code-only and does not declare installation of third-party binaries. This is lower risk from an install perspective. The code imports 'requests' at runtime (no dependency declaration beyond package.json, which is unusual but not inherently harmful).
Credentials
The skill declares no required environment variables or credentials and the code does not attempt to read env vars or system config. The only credential-like artifact is a hardcoded Authorization header ('Bearer test_token') used when the auth option is set; that is odd but does not request secrets from the environment.
Persistence & Privilege
The skill does not request always:true or other elevated persistence. It writes test reports into an output directory under the skill folder (OUTPUT_DIR), which is reasonable for a local testing script and does not modify other skills or system-wide agent settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ai-api-test
  3. After installation, invoke the skill by name or use /ai-api-test
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release
Metadata
Slug ai-api-test
Version 1.0.0
License
All-time Installs 2
Active Installs 2
Total Versions 1
Frequently Asked Questions

What is AI API Test?

Automates API testing, monitors response times, validates data, checks status codes, performs performance and regression tests, and integrates with CI/CD. It is an AI Agent Skill for Claude Code / OpenClaw, with 797 downloads so far.

How do I install AI API Test?

Run "/install ai-api-test" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is AI API Test free?

Yes, AI API Test is completely free (open-source). You can download, install and use it at no cost.

Which platforms does AI API Test support?

AI API Test is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created AI API Test?

It is built and maintained by ZhangYang (@arthasking123); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments