drizzle-integration
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows standard development practices for setting up ORM tools. The provided SQL migrations and TypeScript templates are functional and contain no hidden malicious logic.
- [EXTERNAL_DOWNLOADS]: The workflow involves installing well-known and trusted Node.js dependencies (e.g.,
drizzle-orm,drizzle-kit,pg) from public registries using the project's package manager. - [COMMAND_EXECUTION]: The skill adds standard database management scripts to the project's
package.json, which are intended for schema generation, migrations, and database prototyping (Drizzle Studio). - [CREDENTIALS_UNSAFE]: While the skill uses environment variables like
DATABASE_URL, it correctly provides an.env.examplefile with placeholder values, preventing the exposure of actual secrets.
Audit Metadata