Skills
skills/peachsolution/peach-harness/peach-db-query/Gen Agent Trust Hub

peach-db-query

Fail

Audited by Gen Agent Trust Hub on May 3, 2026

Risk Level: HIGHCREDENTIALS_UNSAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [CREDENTIALS_UNSAFE]: The skill is desig n ed to automatically locate, read, and parse sensitive project configuration files such as env.local.yml and conf.php to extrac t database host names, user names, and plain-text password s.
  • [COMMAND_EXECUTION]: The skill execute s persisten t system modification s by appending export com mand s to the user's shell profile (~/.zshrc) to update the PAT H variable. It also utilize s sudo for automate d package managemen t operation s on Linux platform s.
  • [EXTERNAL_DOWNLOADS]: The skill initiate s automate d download s and installation s of database CLI tool s using well-know n package manager s like Homebrew an d APT, whic h retriev e software from external repositories.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
May 3, 2026, 02:26 PM