alibaba-java-coding-guidelines-skill
Pass
Audited by Gen Agent Trust Hub on Jun 25, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The file
skill-report.jsoncontains self-referential metadata that appears to target the security analysis process. - Ingestion points: The
skill-report.jsonfile included in the root directory. - Boundary markers: None present; the file is ingested as raw data.
- Capability inventory: The skill primarily uses file-reading capabilities for guideline reference and structural validation.
- Sanitization: No sanitization is performed on this data file.
- Evidence: The
security_audit.summaryfield contains: "AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human."
- Analysis: This is identified as a Category 8e injection attempt intended to manipulate the verdict of automated scanners by presenting a pre-fabricated failure state.
- [COMMAND_EXECUTION]: The skill provides utility scripts in Python, Node.js, and Go, along with a Bash runner, to validate the skill's integrity.
- Evidence:
tests/test_validators.sh,scripts/validate_skill.py,scripts/validate_skill.mjs, andscripts/validate_skill.go. - Analysis: These scripts perform local file operations (reading
SKILL.mdandreferences/) and verify the content against regular expressions. They do not initiate network connections, access sensitive system paths, or execute commands based on untrusted external data.
Audit Metadata