database-migrations
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- PROMPT_INJECTION (LOW): Detected indirect prompt injection surface (Category 8). Evidence: 1. Ingestion points: The agent processes schema.prisma and migration SQL files. 2. Boundary markers: Absent; no delimiters or ignore-instructions are specified for schema content. 3. Capability inventory: Includes npx prisma migrate (schema modification), executeRaw (raw SQL execution), and pg_dump (data extraction). 4. Sanitization: Relies on default Prisma behaviors; no explicit validation of untrusted schemas is described.
- EXTERNAL_DOWNLOADS (LOW): The skill utilizes npx to execute the prisma package. While unversioned in the examples, this is a standard industry practice for the domain, and the risk is mitigated by its alignment with the skill's primary purpose.
- COMMAND_EXECUTION (SAFE): Use of standard tools like npx prisma and pg_dump for their intended administrative purposes in database management is considered safe and appropriate for this skill's context.
Audit Metadata