cwe-306-missing-authentication
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill provides a shell command using
grepto help developers find potentially unprotected endpoints in Java Controller files. This command is a static, non-malicious search utility used for its intended primary purpose of code auditing. - [EXTERNAL_DOWNLOADS]: The documentation contains a link to the author's GitHub repository (
github.com/DevelopersCoffee/java-cwe-security-skills) as a source reference. This is an informational link and does not trigger any automated downloads or execution of remote code.
Audit Metadata