Skills
skills/xu-cell/ai-engineering-init/json-serialization/Gen Agent Trust Hub

json-serialization

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides a template for a Java JsonUtils utility class based on the industry-standard Jackson library.
  • [SAFE]: Deserialization methods parseObject and parseArray correctly use explicit Class<T> and TypeReference<T> parameters. This approach prevents Remote Code Execution (RCE) vulnerabilities associated with insecure polymorphic deserialization (e.g., Jackson's enableDefaultTyping).
  • [SAFE]: The configuration in JacksonConfig focuses on benign data transformations such as date formatting and numeric precision protection for large integers, which are standard developer practices.
  • [SAFE]: No network operations, credential hardcoding, or suspicious command executions were detected in the code snippets provided.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 10:11 AM