api-database-sequelize
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill documents industry-standard patterns for database interactions and explicitly teaches mitigations for common SQL vulnerabilities.
- [CREDENTIALS_UNSAFE]: Database connection configurations correctly leverage environment variables (e.g., process.env.DB_PASSWORD) to prevent hardcoding of sensitive credentials.
- [DATA_EXFILTRATION]: No patterns of unauthorized data collection or exfiltration were found in the instructions or code examples.
- [PROMPT_INJECTION]: The skill contains no instructions attempting to override agent safety guidelines or bypass behavioral constraints.
- [SAFE]: The documentation for raw SQL queries includes mandatory guidance on using replacements and bind parameters to prevent SQL injection attacks. (Evidence: examples/advanced.md provides explicit examples for SQL injection prevention).
Audit Metadata