Skills
skills/joaquimscosta/arkhe-claude-plugins/spring-boot-observability/Gen Agent Trust Hub

spring-boot-observability

Pass

Audited by Gen Agent Trust Hub on Apr 26, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security threats detected. The skill consists of educational markdown files and code examples for Java and Kotlin.
  • [SAFE]: The skill correctly demonstrates secure credential management by using environment variable placeholders (e.g., ${DATADOG_API_KEY}, ${OTEL_AUTH_TOKEN}, ${ACTUATOR_PASSWORD}) instead of hardcoding sensitive information.
  • [SAFE]: The documentation provides explicit guidance on securing Spring Boot Actuator endpoints, recommending that sensitive endpoints be disabled by default or restricted to local access and authenticated users in production environments.
  • [SAFE]: References to external libraries (Spring Boot, Micrometer, OpenTelemetry) are to official, industry-standard packages used for application monitoring and tracing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 26, 2026, 10:55 AM
Security Audit — agent-trust-hub — spring-boot-observability