test-legacy-java
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is strictly educational and instructional, providing patterns for refactoring and testing legacy Java code without any malicious intent or hidden payloads.
- [COMMAND_EXECUTION]: Provides informational shell commands for local Git repository analysis, such as
git log, to identify 'Hot Spots' (frequently modified files). These commands are used for developer insights and are restricted to local metadata. - [EXTERNAL_DOWNLOADS]: References well-known and trusted Java testing libraries, including JUnit 4, JUnit 5, Mockito, and ApprovalTests. These are documented via standard Maven dependency snippets and represent common, safe development dependencies.
- [INDIRECT_PROMPT_INJECTION]: The skill defines a workflow for analyzing user-supplied 'legacy' Java code (ingestion point) to produce corresponding unit tests (capability). While it does not implement explicit boundary markers or sanitization, the risk is negligible as the output is restricted to standard test code generation within the user's development context.
Audit Metadata