database-optimization
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [Prompt Injection] (HIGH): Indirect Prompt Injection Surface. The skill is designed to ingest and analyze external code and database scripts which are attacker-controllable inputs.
- Ingestion points: The skill uses 'Read', 'Grep', and 'Glob' tools to ingest untrusted data from the filesystem (source code, SQL scripts, query logs).
- Boundary markers: Absent. The instructions do not define delimiters or provide guidance for the agent to ignore instructions embedded within the processed data.
- Capability inventory: The skill is granted 'Bash', 'Write', and 'Edit' tools, allowing for arbitrary command execution and permanent filesystem modification based on instructions found in the analyzed data.
- Sanitization: Absent. There is no logic provided to sanitize or validate the content of the files being optimized before they are processed by high-privilege tools.
Recommendations
- AI detected serious security threats
Audit Metadata