java-migration
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for running build and test commands such as
mvn compileandmvn test. These commands execute logic and configurations defined within the local project being migrated. - [EXTERNAL_DOWNLOADS]: Recommends the use of the OpenRewrite Maven plugin to automate refactoring tasks. This process involves downloading external plugins and migration recipes from the Maven Central repository during execution.
- [PROMPT_INJECTION]: The skill defines a workflow that processes untrusted project files like Java source code and Maven configurations. This creates a surface for indirect prompt injection where malicious instructions embedded in the processed files could influence agent behavior.
- Ingestion points: Local project files including
src/*.javaandpom.xml. - Boundary markers: The instructions do not specify delimiters or warnings to ignore embedded instructions within the analyzed files.
- Capability inventory: The skill utilizes shell execution and local file system access.
- Sanitization: No explicit sanitization or validation of the input file content is performed.
Audit Metadata