skills/developerscoffee/java-cwe-security-skills/cwe-377-insecure-temporary-file/Gen Agent Trust Hub
cwe-377-insecure-temporary-file
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves its stated purpose of providing security remediation guidance for Java developers fixing CWE-377 vulnerabilities.
- [COMMAND_EXECUTION]: Includes a shell command using grep to search for vulnerable patterns in local source code files. This is a standard diagnostic operation for this type of security skill.
- [INDIRECT_PROMPT_INJECTION]: The skill defines a framework for the agent to ingest and transform untrusted Java source code. While this creates a vulnerability surface, the instructions themselves are defensive and intended to improve the security posture of the target application.
Audit Metadata