eliteforge-framework-specification
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a technical specification and manual for the EliteForge framework, prioritizing the reuse of standardized Java components over custom implementations.
- [COMMAND_EXECUTION]: The skill uses standard command-line tools (
cat,rg,sed) to search and extract content from its local reference files (references/toc.mdandreferences/framework-nightly-readme.md). These operations are restricted to internal files and are used for context retrieval (RAG), which is a standard and safe behavior for documentation-focused agents. - [EXTERNAL_DOWNLOADS]: The documentation references official vendor domains and tools (e.g.,
cisdigital.cn,/elite-forge/generator/) belonging to the framework's ecosystem. These are legitimate resources for the intended user (Java developers) and do not represent unauthorized or risky external connections. - [CREDENTIALS_UNSAFE]: The reference manual contains multiple configuration examples for Maven, Redis, and S3. These examples use obvious placeholders for sensitive information (e.g.,
password: xxxxxxxxxxxxxxx,access-key: 你的key,secret-key: 你的secret) and do not expose actual credentials or secrets.
Audit Metadata