spring-boot-actuator
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or security vulnerabilities were detected. The skill primarily consists of reference documentation and implementation patterns for Java/Spring Boot applications.- [SAFE]: The skill includes explicit security warnings and constraints, advising against the public exposure of sensitive endpoints like /actuator/env, /actuator/heapdump, and /actuator/shutdown without proper authentication.- [SAFE]: All external URL references (e.g., Prometheus, Datadog, Zipkin) are standard monitoring service endpoints or example placeholders used for educational purposes.- [SAFE]: The provided code examples follow industry-standard security practices for Spring Security integration with Actuator endpoints.
Audit Metadata