Skills
skills/dbos-inc/agent-skills/dbos-typescript/Gen Agent Trust Hub

dbos-typescript

Pass

Audited by Gen Agent Trust Hub on Feb 15, 2026

Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis
  • [External Downloads] (LOW): The skill provides instructions to install multiple NPM packages from the @dbos-inc scope (e.g., @dbos-inc/dbos-sdk, @dbos-inc/knex-datasource). While these are necessary for the framework being documented, the organization is not included in the predefined trusted list.
  • [Credential Exposure] (SAFE): No hardcoded secrets or sensitive credentials were detected. The skill correctly demonstrates using environment variables for database connection strings and other configuration.
  • [Prompt Injection] (SAFE): No instructions attempting to override agent behavior, bypass safety protocols, or reveal system prompts were found.
  • [Indirect Prompt Injection] (INFO): Example code includes patterns for ingesting untrusted external data (e.g., HTTP request bodies). While these are standard application patterns, they represent a potential attack surface that developers using this skill should be aware of.
Audit Metadata
Risk Level
LOW
Analyzed
Feb 15, 2026, 10:56 PM