cloudflare-d1
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- COMMAND_EXECUTION (LOW): The skill contains a shell script (
templates/d1-setup-migration.sh) that interacts with the Cloudflare CLI (wrangler). This is the intended purpose of the skill and involves standard developer operations. - EXTERNAL_DOWNLOADS (LOW): Uses
npx wrangler, which may download the CLI tool from the official npm registry during execution if it is not already installed. - INDIRECT_PROMPT_INJECTION (LOW): The skill ingests user-provided database names and SQL migration content. While it uses double-quoting in shell scripts to mitigate basic injection, the data is processed by tools with significant capabilities (wrangler). Documentation (README.md) explicitly warns the user before production changes.
- DATA_EXPOSURE (SAFE): No hardcoded credentials or sensitive file paths were detected. The skill uses standard environment bindings for database access.
Audit Metadata