query-expert
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Security Analysis (SAFE): No malicious behaviors, hardcoded credentials, or unauthorized network operations were identified in the shell scripts or reference documentation. The skill operates locally for text processing and instruction.\n- Indirect Prompt Injection Surface (SAFE): The
optimize_query.shscript reads and analyzes external SQL files, which is a common utility pattern but represents a surface for indirect instructions.\n - Ingestion points:
scripts/optimize_query.sh(reads the file path provided as the first argument).\n - Boundary markers: None present; content is processed directly from the file.\n
- Capability inventory: The script performs static text analysis using
grepandawkto identify query anti-patterns; it does not execute the SQL queries or shell commands found within the file content.\n - Sanitization: Logic utilizes double-quoting for variable expansion and filters output through
awkto ensure only specific tokens are processed.
Audit Metadata