Skills
skills/openaec-foundation/erpnext_anthropic_claude_development_skill_package/frappe-syntax-scheduler/Gen Agent Trust Hub

frappe-syntax-scheduler

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill provides legitimate documentation and code examples for the Frappe framework's scheduler and background jobs system.\n- [SAFE]: The documentation includes security best practices for background tasks, such as explicit owner assignment when running as Administrator and transaction management (using frappe.db.commit and frappe.db.rollback) to prevent data inconsistency.\n- [SAFE]: In accordance with Category 8 analysis (Indirect Prompt Injection), the skill documents surfaces for data ingestion (e.g., API calls and data imports). These are documented in the context of framework functionality with corresponding error handling patterns.\n
  • Ingestion points: external_api_call and get_import_rows in references/examples.md.\n
  • Boundary markers: Documentation emphasizes transaction boundaries and job deduplication using job_id.\n
  • Capability inventory: Includes frappe.enqueue, frappe.db.commit, frappe.sendmail, and frappe.publish_realtime.\n
  • Sanitization: Instructions include per-record error handling and explicit document permissioning.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 11:52 AM