moai-domain-database
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Extensive analysis across all ten threat categories revealed no malicious patterns, prompt injections, or unauthorized data access routines.
- [COMMAND_EXECUTION]: The skill uses the Bash tool to interface with database CLIs (psql, mongosh, redis-cli, etc.). These tools are correctly scoped in the
allowed-toolsfrontmatter and are essential for the skill's primary purpose of database administration. - [CREDENTIALS_UNSAFE]: Security best practices are followed for secret management. The skill provides configuration templates that use environment variable placeholders (e.g.,
${DB_USER},${DB_PASSWORD}) rather than hardcoded credentials. - [DATA_EXPOSURE]: Implementation patterns for database access emphasize the use of bind variables and parameterized queries, which effectively mitigates the risk of injection attacks and accidental data exposure.
Audit Metadata