db-migration
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No security issues detected. The skill outlines a standard development workflow for database schema management.
- [COMMAND_EXECUTION]: The skill utilizes local 'make' targets such as 'atlas-fmt', 'atlas-lint', and 'regenerate-all-from-atlas' to automate the migration process. These commands are typical for development environments using Atlas and SQLC tools and are considered vendor resources in this context.
- [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection through data ingestion. • Ingestion points: HCL schema definitions in 'tools/atlas/schemas/' and SQLC query definitions in 'tools/sqlc/queries/'. • Boundary markers: Absent. No explicit instructions to ignore instructions embedded within the processed files. • Capability inventory: Execution of subprocesses via 'make' targets which perform file writes and database resets. • Sanitization: Absent. The skill does not describe any sanitization or validation of the input files before processing.
Audit Metadata