Skills
skills/developerscoffee/java-cwe-security-skills/cwe-78-os-command-injection/Gen Agent Trust Hub

cwe-78-os-command-injection

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is strictly instructional and provides legitimate security remediation advice for Java developers.
  • [COMMAND_EXECUTION]: Includes a grep command string in the 'Detection Pattern' section intended for local use by a developer or agent to scan source code for vulnerable patterns. This command is restricted to local file searching and is a standard part of the skill's utility.
  • [EXTERNAL_DOWNLOADS]: References the author's GitHub repository for the Java CWE Security Skills Generator. This is a documentation link and does not represent an automated download of executable code.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 09:38 PM