drizzle-orm-rules
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes external codebase data and possesses file-modification capabilities, creating an attack surface for indirect prompt injection.\n
- Ingestion points: The agent is instructed to read files matching the glob
src/lib/db/**/*.tsinto its context for review.\n - Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands in the processed files present in the skill definition.\n
- Capability inventory: The agent is granted
Read,Write, andEdittools to perform actions based on the content of the ingested files.\n - Sanitization: No logic is provided to sanitize or filter potential instructions embedded in code comments or strings within the files.
Audit Metadata