database-testing
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses child_process.execSync to run migration tools such as Prisma and database utilities like pg_dump. This is standard for the described workflow but represents a sensitive capability.
- [PROMPT_INJECTION]: Detected an Indirect Prompt Injection surface (Category 8). Ingestion points: The skill reads database and ORM configuration from the .agents/qa-project-context.md file. Boundary markers: Absent; there are no clear delimiters or instructions to ignore embedded content in the processed context file. Capability inventory: Includes the ability to execute shell commands (execSync) and perform database queries (pg.Pool). Sanitization: No validation or sanitization of data from the project context is performed before it is used in command construction or SQL queries.
Audit Metadata