spring-boot-standards
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill is a collection of documentation and code templates for enterprise Java development. All provided code snippets follow standard Spring Boot patterns.
- [DATA_EXPOSURE] (SAFE): In the logging standards resource (02-logging.md), the skill explicitly identifies masking sensitive information (passwords, card numbers, API keys) as a best practice, reducing the risk of accidental credential exposure.
- [REMOTE_CODE_EXECUTION] (SAFE): No remote code execution patterns, external script downloads, or dynamic execution of untrusted code were identified. All dependencies referenced are standard Java libraries like Lombok, Slf4j, and Spring Framework.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingest surface is limited to user queries for code templates. It processes these locally using keyword matching to serve internal resource files, presenting a minimal attack surface for indirect injection via external data.
Audit Metadata