Skills
skills/whtoo/how_to_implment_pl_in_antlr4/antlr4-dev/Gen Agent Trust Hub

antlr4-dev

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION] (SAFE): The skill utilizes the Bash tool to execute standard development commands such as mvn generate-sources and mvn test. These are legitimate operations within the scope of a Java/ANTLR4 project.
  • [DYNAMIC_EXECUTION] (SAFE): The skill facilitates the generation of Java code from grammar files (.g4), which is the primary intended function of an ANTLR4 development assistant.
  • [INDIRECT_PROMPT_INJECTION] (LOW): The skill presents an attack surface for indirect prompt injection because it processes untrusted local files and has command-line capabilities.
  • Ingestion points: The skill reads .g4 and .java files from the local filesystem.
  • Boundary markers: Absent. The instructions do not define delimiters or warnings for the agent when processing these files.
  • Capability inventory: The skill has access to the Bash tool, allowing it to execute generated code or scripts.
  • Sanitization: No validation or sanitization of the file content is performed before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:30 PM