security-audit
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill serves as a reference for secure coding practices in Java, specifically targeting frameworks like Spring and Quarkus.
- [SAFE]: Vulnerable code examples (e.g., SQL injection, insecure deserialization, and hardcoded secrets) are used strictly for instructional purposes to demonstrate what to avoid during security audits.
- [EXTERNAL_DOWNLOADS]: Recommends standard, trusted security tools like the OWASP Dependency Check and OWASP Encoder library, which are industry-standard for Java development.
- [EXTERNAL_DOWNLOADS]: References authoritative and well-known security resources such as the official OWASP project and Snyk documentation.
Audit Metadata