402-frameworks-quarkus-rest
Pass
Audited by Gen Agent Trust Hub on Jul 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute standard build tool commands such as
./mvnw compileand./mvnw clean verifyto ensure project stability before and after making changes. These are routine operations for a Java development agent. - [DATA_EXPOSURE]: The skill explicitly advocates for security-aware boundaries by advising the use of DTOs and records instead of persistence entities to avoid leaking internal data (e.g., password hashes or audit columns) to API consumers.
- [REMOTE_CODE_EXECUTION]: The guidelines suggest incorporating well-known Maven plugins and dependencies, such as the Quarkus OpenAPI Generator and the OpenAPI Generator Maven plugin, which are standard tools in the Java ecosystem for contract-first development.
Audit Metadata