swift-valkey
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill consists of technical documentation and Swift code snippets. No executable scripts, obfuscation, or unauthorized access patterns were detected. Code examples follow security best practices, such as suggesting TLS for database connections.\n- [EXTERNAL_DOWNLOADS]: The skill references the official
valkey-swiftlibrary hosted by thevalkey-ioorganization on GitHub. This is a well-known and trusted source associated with the Valkey project.\n- [PROMPT_INJECTION]: The skill documentation creates a surface for indirect prompt injection by demonstrating how to read data from external database instances.\n - Ingestion points: External data enters the context via
client.get,client.hget, andclient.subscribemethods documented inSKILL.md.\n - Boundary markers: Absent in the provided code snippets.\n
- Capability inventory: The skill allows for database operations like
SETandPUBLISH.\n - Sanitization: Not addressed in the client-side code examples.
Audit Metadata