java-spring-service
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No security issues were detected. The skill generates standard Java code for Spring Boot applications and does not contain any malicious patterns such as hardcoded credentials or unauthorized data exfiltration.
- [PROMPT_INJECTION]: The skill has a vulnerability surface for indirect prompt injection because it generates code based on user-provided service requirements. 1. Ingestion points: Service requirements provided by the user (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: The skill uses Read, Write, Glob, and Bash tools to generate and build the service (SKILL.md). 4. Sanitization: No explicit validation or sanitization of input requirements is provided.
Audit Metadata