aws-appsync-resolver
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an educational and reference resource for AWS AppSync development. It does not contain any executable scripts (.py, .js, .sh) that run within the agent's environment, only Markdown reference files and evaluation JSON.
- [SAFE]: Data source implementations for DynamoDB, RDS, and HTTP follow standard AWS AppSync patterns. For example, the RDS resolver implementation uses the
sqltagged template provided by@aws-appsync/utils/rdsto ensure queries are automatically parameterized, preventing SQL injection. - [SAFE]: The skill mentions external dependencies like
@aws-appsync/utilsand@aws-appsync/eslint-plugin, which are official and trusted packages from Amazon Web Services for the AppSync runtime. - [SAFE]: No hardcoded credentials or sensitive data exposure patterns were found. Placeholders like
<your:topic:arn>are used appropriately in documentation examples. - [SAFE]: No prompt injection or behavior override instructions were found in the metadata or instructional content.
Audit Metadata