sqlalchemy-postgres
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SQL Injection (SAFE): The skill provides explicit instructions and code examples on how to prevent SQL injection by using the SQLAlchemy ORM or the
text()function with parameters instead of string formatting. - Credential Management (SAFE): Instructions strongly advise against hardcoding credentials, demonstrating how to use
pydantic-settingsto load configuration from environment variables. - Dependencies (SAFE): The skill references industry-standard, well-maintained Python packages including
sqlalchemy,alembic,pydantic, andasyncpg. - Remote Code Execution (SAFE): No patterns of remote script execution or unsafe dynamic code interpretation (e.g.,
eval,exec) were found. - Privilege Escalation (SAFE): No commands requiring elevated privileges (e.g.,
sudo) or unsafe file permission modifications are present.
Audit Metadata