minecraft-bukkit-pro
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains purely instructional content and architectural guidelines for developing Minecraft server plugins. It does not include any executable scripts, obfuscated payloads, or malicious commands.
- [PROMPT_INJECTION]: The instructions establish a specialized persona for development assistance and do not attempt to bypass AI safety filters, ignore prior instructions, or extract system-level prompts.
- [DATA_EXFILTRATION]: No evidence of credential exposure or unauthorized data access patterns was found. The skill focuses on standard server-side APIs and development workflows.
- [EXTERNAL_DOWNLOADS]: The documentation mentions standard industry tools such as Maven, Gradle, and various well-known APIs (Vault, ProtocolLib). These are documented neutrally as part of the Minecraft ecosystem and do not involve unauthorized remote script execution.
- [SAFE]: The skill includes instructions to utilize WebSearch and WebFetch for research purposes. 1. Ingestion points: WebSearch results and WebFetch content for API documentation. 2. Boundary markers: None specified in the instructions. 3. Capability inventory: No direct execution capabilities defined; the skill is a set of text instructions. 4. Sanitization: Not mentioned. This usage is consistent with the intended developer persona and represents a standard research surface rather than a targeted vulnerability.
Audit Metadata