spring-boot-actuator

skills-sh:giuseppe-trisciuoglio_developer-kit__spring-boot-actuator

View source

85/100

First Seen

Feb 18, 2026

Last Scanned

Feb 20, 2026

Findings

Score

85/100

HIGH 1

LOW 1

Findings (2)

HIGH

Zero-width character obfuscation PROMPT_INJECTION_004

prompt-injection L194

Detects zero-width characters used to hide content

FIX

Remove hidden directives embedded in markdown, HTML comments, or encoded text. All agent-facing text should be explicit and visible in the skill definition.

FP?

Likely FP if the match is a standard markdown formatting pattern or HTML comment used for documentation rather than concealing directives.

LOW

Unscoped Bash tool in allowed tools INDIRECT_010

command-execution L4

Detects skills that include unscoped Bash in their allowed tools list (not Bash(cmd:*) scoped)

allowed-tools: Read, Write, Bash

FIX

Scope the Bash tool to specific commands using allowedTools patterns (e.g., Bash(git *) instead of bare Bash). Remove blanket Bash access from allowed_tools lists.

FP?

Likely FP if the Bash entry in allowed_tools is part of a constrained configuration that limits commands elsewhere (e.g., via system prompt restrictions).