databases
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows industry best practices for database security, including the use of modern authentication methods (SCRAM-SHA-256), enforcement of TLS/SSL for all connections, and explicit warnings against insecure configurations like 'trust' or 'md5' authentication.
- [SAFE]: Extensive safety checklists and 'AI Self-Checks' are provided to prevent common database errors, such as non-idempotent migrations, lack of concurrency in index creation, and SQL injection via string concatenation (Rule 9).
- [SAFE]: Backup and migration patterns are well-documented, using standard system utilities (e.g., psql, mongorestore, xtrabackup) and emphasizing verification and encryption. It correctly advises using environment variables or secret managers for credential management instead of hardcoding secrets.
- [SAFE]: The skill includes guidance on patching known database vulnerabilities, demonstrating a proactive security posture. While the target versions and CVE dates (e.g., 2026) appear forward-dated to simulated future environments, the underlying advice is sound and safety-oriented.
Audit Metadata