cloudflare-d1
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill serves as a detailed documentation and resource hub for Cloudflare D1 development. It includes production-ready templates and architectural guidance.
- [COMMAND_EXECUTION]: The documentation and bundled shell scripts utilize standard Cloudflare
wranglerCLI commands for database creation, migration management, and local testing. This is the expected behavior for this toolset. - [EXTERNAL_DOWNLOADS]: The skill references well-known official documentation from Cloudflare and suggests the use of standard package runners like
npxorbunxfor managing developer dependencies. - [DATA_EXFILTRATION]: Examples provided for observability (e.g., sending metrics to Datadog) follow best practices by using secure environment variables for API keys rather than hardcoding credentials.
- [PROMPT_INJECTION]: The documentation includes explicit instructions and safety filters ('Critical Rules') to prevent common vulnerabilities like SQL injection, directing users to use prepared statements over string concatenation.
Audit Metadata