cui-maven-rules
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION] (SAFE): There is a potential surface for indirect prompt injection since the skill involves analyzing Maven build output and Project Object Model (POM) files. However, this is inherent to the skill's primary purpose of build verification and troubleshooting.
- Ingestion points: Analysis of Maven build logs and processing of POM files.
- Boundary markers: None specified in the instructions for parsing logs.
- Capability inventory: Restricted to 'Read' and 'Grep' tools for standards lookup.
- Sanitization: Not explicitly detailed for log analysis.
- [EXTERNAL_DOWNLOADS] (SAFE): The standards specify the use of the 'frontend-maven-plugin' to manage Node.js (v20.12.2) and npm (10.5.0). These are standard tools for the specified integration and do not involve untrusted or risky remote code execution.
- [COMMAND_EXECUTION] (SAFE): The skill guides the agent to follow established build and linting workflows, including commands such as 'npm install' and 'npm run lint', which are routine for Maven-based frontend development.
Audit Metadata