spring-boot-cache
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Technical analysis of the instructions and reference material confirms that the skill provides legitimate patterns for Spring Boot caching without any malicious intent or hidden code. The instructions promote best practices such as using constructor injection and guarding PII.
- [EXTERNAL_DOWNLOADS]: The skill references official documentation and reputable open-source projects including the Spring Framework documentation (spring.io), the Caffeine cache GitHub repository, and official sites for Redis and Ehcache. These are well-known technology services and are used appropriately for standard technical reference.
- [COMMAND_EXECUTION]: The skill suggests the use of terminal commands for standard development workflows, such as running unit tests and inspecting local Actuator endpoints for performance monitoring. No unauthorized or suspicious command patterns were found.
- [DATA_EXFILTRATION]: No patterns for unauthorized data collection or exfiltration were detected. Configuration examples for sensitive properties use empty placeholders, and the skill explicitly advises against caching sensitive data like PII without proper encryption.
- [PROMPT_INJECTION]: The skill lacks any adversarial prompt patterns, such as instructions to ignore previous rules, safety filter bypasses, or system prompt extraction attempts. All content is focused on the stated technical purpose.
Audit Metadata