product
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses environment variables (${DB2i_USER}, ${DB2i_PASS}) to handle database credentials, following standard security practices for secret management.
- [SAFE]: All database tools are explicitly configured with readOnly: true, preventing any accidental or malicious data modification on the IBM i system.
- [SAFE]: SQL statements utilize named parameter binding (e.g., :product_id, :limit), which effectively mitigates the risk of SQL injection attacks from user-supplied input.
- [SAFE]: The database connection configuration includes ignore-unauthorized: true, which is a common setup for internal enterprise environments to handle self-signed certificates.
Audit Metadata