skills/jeremylongshore/claude-code-plugins-plus-skills/automating-database-backups/Gen Agent Trust Hub
automating-database-backups
Warn
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The skill requires broad permissions to execute Bash commands for cron, pg_dump, mysqldump, and mongodump. This allows the agent to perform significant system-level modifications and establish persistence through crontab manipulation.
- [CREDENTIALS_UNSAFE] (MEDIUM): The skill handles sensitive database credentials via environment variables and specifically references an encryption key file at /etc/backup.key for GPG operations.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes user-provided inputs such as database names and connection strings to generate executable shell scripts.
- Ingestion points: Requirements gathering in SKILL.md (Step 1).
- Boundary markers: Absent from the instructions.
- Capability inventory: Extensive Bash toolset, Write, Edit, and python3 execution.
- Sanitization: Unverifiable as the source code for the Python generator scripts is not included in the skill package.
Audit Metadata