Skills
skills/rdimascio/supabase-marketplace/design-schema/Gen Agent Trust Hub

design-schema

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect prompt injection surface detected where user-provided data is used to drive agent output.
  • Ingestion points: User descriptions of entities, data models, and requirements in SKILL.md.
  • Boundary markers: Absent; the instructions do not specify delimiters or constraints to prevent the agent from following instructions embedded within the user data description.
  • Capability inventory: The skill uses Read, Write, and Edit tools, which allow the agent to modify the file system based on potentially untrusted input.
  • Sanitization: Absent; no explicit validation or sanitization of input data is defined before the agent generates code or migration scripts.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 07:31 AM