Skills
skills/pingcap/agent-rules/tidb-query-tuning/Gen Agent Trust Hub

tidb-query-tuning

Pass

Audited by Gen Agent Trust Hub on Apr 21, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The Python script scripts/generate_tidb_issue_experiences.py uses the subprocess module to execute gh api commands. This is used to programmatically search and retrieve metadata from the TiDB GitHub repository.
  • [EXTERNAL_DOWNLOADS]: The skill performs network requests to GitHub APIs to download issue and pull request data. It also suggests cloning the pingcap/tidb repository for deep code analysis, which is an expected action for the skill author's own official resources.
  • [COMMAND_EXECUTION]: The skill provides diagnostic SQL scripts that execute queries against TiDB internal system tables (like information_schema.slow_query and processlist) and utilizes the TiDB HTTP API (port 10080) to collect profiling data and statistics.
  • [SAFE]: The Python script includes a sanitize_text function that filters potentially problematic content (like HTML comments, URLs, and code blocks) from fetched GitHub data before writing it to local markdown files, demonstrating a proactive approach to mitigating indirect prompt injection.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 21, 2026, 12:49 PM