database-schema
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The skill defines a local database at
~/.multishot/database.sqlite. While it includes acredentialstable, the schema explicitly documentation states that values should be references tosafeStoragerather than plaintext, which is a secure design choice.\n- [Indirect Prompt Injection] (SAFE): The database stores potentially untrusted content such as agent prompts and output logs. The skill mitigates this risk by demonstrating parameterized queries (db.prepare(...).get(?)) in its usage examples. 1. Ingestion points:output_logsandagentstables inSKILL.md. 2. Boundary markers: Not specified in schema. 3. Capability inventory: SQLite database access viabetter-sqlite3. 4. Sanitization: Usage examples demonstrate parameterized queries to prevent injection.\n- [Unverifiable Dependencies] (SAFE): The skill referencesbetter-sqlite3, which is a standard and well-known Node.js library for SQLite operations.
Audit Metadata