drizzle-orm
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily educational, providing patterns and best practices for Drizzle ORM. It includes proactive security measures, such as warning against raw SQL concatenation and advocating for the use of
sql.placeholder()to prevent SQL injection vulnerabilities. - [PROMPT_INJECTION]: No patterns associated with prompt injection, safety bypass, or instruction overrides were found.
- [DATA_EXFILTRATION]: The skill does not contain any hardcoded credentials, sensitive file path access, or commands that attempt to send data to external or non-whitelisted domains.
- [COMMAND_EXECUTION]: The skill references standard local project scripts (e.g.,
pnpm run db:migrate) for database management, which is normal and expected behavior for a developer guide of this type.
Audit Metadata