knowledge-base
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious instructions, obfuscation, or safety bypass attempts were detected within the skill content.
- [DATA_EXFILTRATION]: The skill manages data in a local SQLite database file at '~/Documents/xiaodazi/knowledge.db' and does not initiate any network connections or external data transfers.
- [COMMAND_EXECUTION]: All database operations are performed using the standard Python sqlite3 library with parameterized queries ('?'), which is a best practice that prevents SQL injection.
- [REMOTE_CODE_EXECUTION]: The skill does not contain any remote code execution patterns, such as fetching and executing external scripts or dynamic runtime compilation.
- [EXTERNAL_DOWNLOADS]: The skill mentions the well-known 'sqlite-utils' package in its metadata, which is a trusted library for SQLite manipulation and does not constitute a security risk.
Audit Metadata