prisma-7
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill provides comprehensive and legitimate documentation for Prisma 7 ORM. No security violations such as prompt injection, data exfiltration, or malicious persistence mechanisms were detected. The skill actually includes security-focused advice, such as using the Omit API to exclude sensitive fields like passwords from query results.
- [REMOTE_CODE_EXECUTION]: The documentation describes standard setup procedures involving the installation of NPM packages and pulling Docker images from trusted providers. All dependency management follows industry-standard patterns using established package managers like npm and docker.
- [DATA_EXPOSURE]: The skill handles database connection strings using environment variables and .env files, which is a standard security practice to avoid hardcoding credentials. It provides clear warnings about not committing .env files to version control.
Audit Metadata