java-api-consistency-validator
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill analyzes external Java source files to extract API definitions. This represents a standard surface for indirect prompt injection associated with the tool's primary purpose. It is assessed as safe due to the lack of exploitable capabilities.\n
- Ingestion points: Java source files are read and parsed in
scripts/validate.py.\n - Boundary markers: None are used to delimit extracted strings in the output report.\n
- Capability inventory: The script is restricted to local file system read/write operations (reading Java files and writing the JSON report). No network access, subprocess spawning, or shell execution capabilities are present.\n
- Sanitization: The tool extracts content using regular expressions without additional sanitization of the values placed in the report output.
Audit Metadata