tidbx-javascript-mysql2
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill correctly handles sensitive information by using environment variables (DATABASE_URL, TIDB_PASSWORD) instead of hardcoding credentials in scripts.
- [SAFE]: The provided code examples and templates demonstrate the use of parameterized queries with placeholders (?), which is a standard best practice to mitigate SQL injection risks.
- [SAFE]: The skill includes explicit instructions and configurations for TLS/SSL, ensuring encrypted connections to TiDB Cloud endpoints.
- [SAFE]: File system access is restricted to reading CA certificates as specified by environment variables, which is a legitimate requirement for establishing secure database connections.
Audit Metadata