Skills
skills/quqi-ai/project-analyzer-skill/project-analyzer/Gen Agent Trust Hub

project-analyzer

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • SAFE (SAFE): The file is entirely documentation-based, providing patterns for Spring Boot and Spring Cloud development.
  • COMMAND_EXECUTION (LOW): The file contains several shell commands using grep and find. These are standard discovery tools used to search local files for specific strings (e.g., searching for dependencies in pom.xml or configurations in .yml files). There are no signs of arbitrary command execution or piping to shells.
  • DATA_EXPOSURE (SAFE): While the document includes configuration templates (e.g., application.yml, database URLs), these use environment variable placeholders like ${DB_PASSWORD:} or local defaults like localhost. No hardcoded credentials or sensitive data were found.
  • NO_CODE (SAFE): The skill provides code snippets for reference and annotation purposes, but it does not include executable scripts or automation that performs actions beyond local file searching.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:30 PM