android-kotlin
Fail
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE]: The skill consists of standard Android development boilerplate and documentation. No malicious instructions, prompt injection, or data exfiltration patterns were identified. The automated scanner alert regarding 'proguard-rules.pro' is a false positive, as it refers to a standard Android build filename mentioned in configuration scripts rather than a malicious URL.
- [EXTERNAL_DOWNLOADS]: The project configuration (Gradle Version Catalog) references well-known and trusted libraries from established organizations such as Google (AndroidX), JetBrains (Kotlin), and Square (Retrofit, OkHttp). These are standard dependencies for Android development. It also references utilities like Coil, Zxing, and Jsoup for image loading, barcode scanning, and HTML parsing respectively.
- [COMMAND_EXECUTION]: The provided CI/CD configuration (GitHub Actions) uses official actions from GitHub and Gradle, and executes standard Gradle build and test commands to verify the project's integrity.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata