golang-database
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill strictly enforces the use of parameterized queries and allowlists for dynamic SQL components, preventing SQL injection vulnerabilities.
- [SAFE]: It includes explicit instructions for resource management, such as mandatory rows.Close() and context propagation, preventing connection leaks and resource exhaustion.
- [SAFE]: The skill explicitly refuses to generate database schemas or migrations, mitigating the risk of AI-generated SQL causing production performance or security issues.
- [SAFE]: The skill processes untrusted data from database results (Category 8 surface). (1) Ingestion: Database queries via sqlx or pgx (references/scanning.md). (2) Boundary: Input is delimited via parameters, though output boundaries are standard Go types. (3) Capability: The agent has access to Bash, Edit, and Write tools. (4) Sanitization: The skill relies on standard database driver parameterization for inputs and structured scanning for outputs.
Audit Metadata