spring-boot
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to bypass safety filters or override system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or unauthorized data access patterns detected.
- [Remote Code Execution] (SAFE): No scripts or commands that download and execute remote content.
- [Indirect Prompt Injection] (LOW): The skill is designed to process user-provided code and text, which constitutes an ingestion point for untrusted data. 1. Ingestion points: User-provided Java source code and configuration files. 2. Boundary markers: Absent (no delimiters or warnings to ignore embedded instructions in user data). 3. Capability inventory: No subprocess calls, file-writes, or network operations found; the skill only generates text. 4. Sanitization: Absent.
- [No Code] (SAFE): This is a documentation-only skill with no executable scripts or binaries.
Audit Metadata