sql-migration-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): This skill contains only a markdown definition (SKILL.md) and does not include any scripts, binaries, or configuration files that execute logic. All behaviors are driven by the agent's interpretation of the documentation.
- [Indirect Prompt Injection] (LOW): The skill defines a surface for processing user-supplied database schemas and migrations using high-privilege tools such as Bash and Write. While no malicious behavior is present, there is a theoretical risk if the agent processes untrusted data containing embedded instructions.
- Ingestion points: User requests and backend code/SQL files (SKILL.md).
- Boundary markers: Not present.
- Capability inventory: Bash, Write, Edit, Read, Grep tools enabled.
- Sanitization: No specific sanitization or validation instructions provided for the tool outputs.
Audit Metadata