Skills
skills/pluginagentmarketplace/custom-plugin-spring-boot/spring-reactive/Gen Agent Trust Hub

spring-reactive

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [Prompt Injection] (SAFE): No malicious instructions, role-play injections, or attempts to bypass safety filters were found in SKILL.md or the documentation files.
  • [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, API keys, or access to sensitive local file paths (~/.ssh, etc.) were detected. The skill does not perform any network operations.
  • [Obfuscation] (SAFE): No Base64, zero-width characters, or hex-encoded commands were found in the skill content.
  • [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not download external scripts or packages. The provided validation script uses standard Python libraries and includes safe handling of local files.
  • [Persistence Mechanisms] (SAFE): No attempts to modify shell profiles, cron jobs, or startup services were identified.
  • [Dynamic Execution] (SAFE): The scripts/validate.py script uses yaml.safe_load(), which is the secure method for parsing YAML and prevents arbitrary code execution during deserialization.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:41 PM