Database Sync
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill does not contain any executable scripts, remote downloads, or obfuscated content. It primarily consists of architectural diagrams, YAML configuration templates, and SQL migration examples intended for documentation purposes.
- [DATA_EXPOSURE]: The skill describes handling sensitive database connection details and credentials. It follows security best practices by recommending the use of secret managers and environment variables (e.g.,
${PG_CONNECTION_STRING}) instead of hardcoding credentials. - [PROMPT_INJECTION]: While the skill ingests external data (source database content) and uses transformation rules, which constitutes an attack surface for indirect prompt injection, this is an inherent risk of its primary function as a data integration tool. No explicit injection patterns were found in the provided instructions.
Audit Metadata