19 lines
522 B
Python
19 lines
522 B
Python
import unittest
|
|
from pathlib import Path
|
|
|
|
|
|
REPO_ROOT = Path(__file__).resolve().parents[3]
|
|
SKILL_PATH = REPO_ROOT / "skills" / "last30days" / "SKILL.md"
|
|
|
|
|
|
class Last30DaysSkillSecurityTests(unittest.TestCase):
|
|
def test_skill_does_not_embed_user_arguments_directly_in_shell_command(self):
|
|
content = SKILL_PATH.read_text(encoding="utf-8")
|
|
|
|
self.assertNotIn('last30days.py "$ARGUMENTS"', content)
|
|
self.assertIn("cat <<'LAST30DAYS_TOPIC'", content)
|
|
|
|
|
|
if __name__ == "__main__":
|
|
unittest.main()
|