spring-boot-security-jwt
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate code templates and documentation for security implementation. All implementation patterns follow modern Spring Security 6.x and industry best practices.
- [COMMAND_EXECUTION]: The skill includes shell scripts for local development tasks such as RSA key generation and implementation testing. These scripts use standard system tools like keytool, openssl, and curl against local endpoints or well-known service URLs.
- [EXTERNAL_DOWNLOADS]: Dependencies referenced in Maven and Gradle snippets are well-known, industry-standard libraries including Spring Security, JJWT, and Testcontainers.
- [DATA_EXPOSURE]: Placeholder secrets are used in configuration examples with explicit warnings provided to the user not to hardcode production secrets. No actual credentials or sensitive keys are exposed.
Audit Metadata