java-gradle
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard Gradle commands for managing dependencies and the Gradle wrapper. These operations interact with trusted repositories such as Maven Central and services.gradle.org.\n- [COMMAND_EXECUTION] (SAFE): The skill uses the Bash tool to execute Gradle build tasks. The documented examples are standard build operations and do not show signs of malicious intent.\n- [DATA_EXFILTRATION] (SAFE): The inclusion of build scans in the documentation is a standard performance-tracking feature of the Gradle ecosystem and is not considered a security risk.\n- [PROMPT_INJECTION] (SAFE): While the skill interacts with build configuration files that could theoretically host indirect prompt injections, this surface is inherent to build management, and the skill includes validation scripts that follow security best practices like safe loading.
Audit Metadata