Skills
skills/arabelatso/skills-4-se/java-test-updater/Gen Agent Trust Hub

java-test-updater

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The workflow directs the agent to execute shell commands like mvn test and ./gradlew test to verify that the updated Java tests compile and pass. This is standard functionality for software development tasks.
  • [PROMPT_INJECTION]: The skill processes untrusted Java code as input, which creates a surface for indirect prompt injection.
  • Ingestion points: Production code versions and existing Java test files (SKILL.md).
  • Boundary markers: No explicit delimiters or instructions to ignore embedded code-level instructions are present.
  • Capability inventory: Shell command execution via build tool binaries.
  • Sanitization: No sanitization or validation of the input source code is performed before processing.
  • [EXTERNAL_DOWNLOADS]: The use of Maven and Gradle involves the download of packages and plugins from official registries. This is standard behavior for these tools and is documented neutrally.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 10:20 PM