cwe-94-code-injection
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a shell command (
grep) designed for local static analysis to find specific Java code patterns. This is a standard utility command and does not target sensitive system paths or require elevated privileges. - [EXTERNAL_DOWNLOADS]: Contains a reference link to the author's GitHub repository (
DevelopersCoffee/java-cwe-security-skills). This is a static documentation link and does not trigger automated downloads or remote code execution.
Audit Metadata