electricsql
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: All analyzed files contain legitimate technical documentation and code samples for ElectricSQL integration. No malicious intent or obfuscation was detected.- [EXTERNAL_DOWNLOADS]: The skill references official packages such as
@electric-sql/clientand@electric-sql/react. It also suggests the installation of complementary skills from the author's own repository (oakoss/agent-skills), which is a standard pattern for skill discovery within this ecosystem.- [COMMAND_EXECUTION]: Documentation includes standard CLI commands fordocker,pnpm, andpsql. These are provided for infrastructure setup, health monitoring, and package management, following industry-standard practices for developer tools.- [CREDENTIALS_UNSAFE]: The skill correctly handles sensitive information by recommending the use of environment variables (e.g.,DATABASE_URL,ELECTRIC_SECRET). It explicitly warns against insecure configurations in production environments.- [PROMPT_INJECTION]: No instructions attempting to bypass safety filters, override agent behavior, or extract system prompts were found.- [REMOTE_CODE_EXECUTION]: The code examples for Web Worker offloading use a Blob-based execution pattern, which is a legitimate performance optimization for browser-based sync operations and is contained within the context of the provided code samples.
Audit Metadata