skills/jeremylongshore/claude-code-plugins-plus-skills/monitoring-database-transactions/Gen Agent Trust Hub
monitoring-database-transactions
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill requests permission to execute database command-line interfaces (psql, mysql, mongosh) through the Bash tool. This is a legitimate requirement for the skill's purpose but represents an increased capability surface.
- [PROMPT_INJECTION]: The skill demonstrates a surface for indirect prompt injection.
- Ingestion points: The skill ingests untrusted data from database query results via Bash tools and from the local filesystem through scripts such as scripts/lock_detector.py.
- Boundary markers: There are no explicit boundary markers or instructions to the agent to ignore instructions embedded within the monitored database data or files.
- Capability inventory: The skill has access to Read, Write, Edit, and Bash tools, which could be leveraged if an injection is successful.
- Sanitization: There is no evidence of sanitization or validation of the data retrieved from the databases or files before it is processed by the agent.
Audit Metadata