skills/giuseppe-trisciuoglio/developer-kit-claude-code/aws-rds-spring-boot-integration/Gen Agent Trust Hub
aws-rds-spring-boot-integration
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Downloads the official Amazon RDS CA certificate from truststore.pki.rds.amazonaws.com to enable secure SSL/TLS communication with database clusters.
- [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface because it processes database configuration parameters like endpoints and credentials which could be manipulated to include instructions. 1. Ingestion points: User-provided datasource configuration values in SKILL.md and referenced documentation. 2. Boundary markers: No delimiters or instructions to ignore embedded instructions are present in the provided configuration templates. 3. Capability inventory: The skill utilizes 'Write' for file generation and 'Bash' for connectivity tests and environment setup. 4. Sanitization: There is no validation or escaping of user-provided configuration values before they are used in file-writing or shell commands.
Audit Metadata