Skills
skills/netresearch/composer-agent-skill-plugin/database-analyzer/Gen Agent Trust Hub

database-analyzer

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute a bundled PHP script (scripts/analyze-table.php) for automated table analysis. This is a local resource included in the skill package and does not involve remote code downloads.
  • [DATA_EXPOSURE]: The skill facilitates access to database schema metadata, including table structures, indexes, and execution plans. This behavior is consistent with the skill's primary purpose of database analysis and optimization.
  • [INDIRECT_PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection as it processes external database metadata (e.g., table comments or schema names) which could theoretically contain malicious instructions.
  • Ingestion points: SQL query results from DESCRIBE, SHOW INDEX, and information_schema tables.
  • Boundary markers: None specified to differentiate between data and instructions.
  • Capability inventory: Execution of SQL commands and the bundled PHP analysis script.
  • Sanitization: None provided for the data returned from database inspection commands.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 07:32 AM