jspecify-skill

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill adds legitimate Java dependencies from well-known organizations including JSpecify, Google (ErrorProne), and Uber (NullAway).
  • [SAFE]: The Python script verify_nullmarked.py performs a benign local audit of Java package files to verify the presence of nullability annotations. It does not perform network operations, access sensitive credentials, or execute external commands.
  • [SAFE]: No signs of prompt injection, obfuscation, or persistence mechanisms were detected in the instructions or the script.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 08:00 AM
Security Audit — agent-trust-hub — jspecify-skill