java-microservices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill provides a surface for indirect prompt injection when the agent interacts with untrusted external codebases.
- Ingestion points: Project files accessed via Read, Glob, and Grep tools.
- Boundary markers: Absent in the skill instructions.
- Capability inventory: Read, Write, Bash, Glob, Grep.
- Sanitization: Not present in the provided validation scripts.
- Dynamic Execution (SAFE): The validation script scripts/validate.py uses yaml.safe_load() to parse configuration files, which correctly prevents unsafe deserialization attacks.
Audit Metadata