dao-best-practice
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes and refactors local source code files, which introduces an indirect prompt injection surface. Adversarial content within the processed files could potentially influence the agent's logic during the refactoring process or its decision to trigger secondary skills.
- Ingestion points: Local DAO files in 'apps/web/src/db/models/daos/'.
- Boundary markers: Absent; no delimiters or ignore-instructions are specified for the target code.
- Capability inventory: Database operations via Drizzle ORM and invocation of the 'repository-best-practice' skill.
- Sanitization: No validation or filtering of the input code is performed.
Audit Metadata