upgrade-aws-sdk-v2
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes
grepto identify deprecated imports and./gradlewto audit the project's dependency graph. These are standard development tools used for their intended purpose in a migration context. - [EXTERNAL_DOWNLOADS]: The skill identifies and recommends official AWS SDK v2 and Amazon MSK IAM authentication libraries. These references target well-known, trusted organizations (Amazon/AWS).
- [PROMPT_INJECTION]: Indirect injection surface is present as the skill analyzes user-provided source code. 1. Ingestion points: Java source files and Gradle build scripts analyzed during the migration process. 2. Boundary markers: Absent; the agent identifies migration targets based on standard package names. 3. Capability inventory: Execution of local shell commands (
grep,gradlew) for file inspection and build verification. 4. Sanitization: The skill uses fixed search strings and predefined dependency substitution templates, minimizing the risk of arbitrary code execution from user input.
Audit Metadata