131-java-testing-unit-testing

Pass

Audited by Gen Agent Trust Hub on Jul 11, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to run standard Maven commands (./mvnw compile, mvn compile, ./mvnw clean verify) to ensure project stability during the testing lifecycle. This is expected behavior for a Java development tool.
  • [EXTERNAL_DOWNLOADS]: The build process involving Maven naturally requires downloading project dependencies from public, well-known registries like Maven Central. This is a routine operation in Java software development.
  • [PROMPT_INJECTION]: The skill processes user-provided Java source and test code, creating an indirect prompt injection surface where the agent could potentially encounter instructions embedded in comments or strings.
  • Ingestion points: User-provided Java source files and test files.
  • Boundary markers: None specified in the instructions for separating code content from agent instructions.
  • Capability inventory: Shell execution for running Maven commands.
  • Sanitization: No specific filtering or escaping is applied to the analyzed code content.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 11, 2026, 05:56 PM
Security Audit — agent-trust-hub — 131-java-testing-unit-testing