moai-lang-java
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [PROMPT_INJECTION] (SAFE): The skill contains purely instructional content related to Java development. There are no attempts to override system prompts, bypass safety filters, or extract internal instructions.
- [DATA_EXFILTRATION] (SAFE): No hardcoded credentials (API keys, tokens) or sensitive file paths were detected. The security patterns described (JWT, OAuth2) are implementation templates for the user and do not contain real secrets.
- [EXTERNAL_DOWNLOADS] (SAFE): While the skill mentions Maven and Gradle build tools, it does not instruct the agent to download or execute scripts from untrusted remote sources. References to the Spring Framework and Hibernate are standard for the Java ecosystem.
- [COMMAND_EXECUTION] (SAFE): Mentions of build commands like 'mvn clean compile' and 'gradle build' are entirely appropriate for a Java language skill and do not include malicious flags or piped remote execution.
- [OBFUSCATION] (SAFE): No evidence of Base64 encoding, zero-width characters, or homoglyph attacks was found in the markdown content.
Audit Metadata