incremental-java-programmer
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands such as 'mvn test' and './gradlew test' to run Java unit tests and verify the code.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection by ingesting and processing content from external sources. 1. Ingestion points: Existing Java source files, pom.xml, build.gradle, and user-provided feature descriptions. 2. Boundary markers: None used to separate code logic from instructions. 3. Capability inventory: The skill has the ability to execute shell commands and modify local files. 4. Sanitization: No sanitization or validation of the ingested repository content is performed before use.
Audit Metadata