303-frameworks-spring-data-jdbc
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions mandate the execution of local build commands (./mvnw compile, mvn clean verify) to ensure code quality and stability. This is a standard practice in Java development but involves executing local scripts or binaries.
- [PROMPT_INJECTION]: As a code-refactoring skill, it ingests Java source files which serve as a potential surface for indirect prompt injection. Ingestion points: Project Java source files and configuration. Boundary markers: Not explicitly defined for separating instructions from code data. Capability inventory: Access to the file system and execution of shell commands via Maven. Sanitization: Relies on compilation success as a primary validation step.
Audit Metadata