typeorm-dev
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill establishes comprehensive coding standards for database interactions, focusing on security and maintainability.
- [SAFE]: Explicitly mitigates SQL injection risks by requiring the use of parameter binding (
:paramName) and prohibiting string interpolation in QueryBuilder and raw queries. - [SAFE]: Enforces data privacy by requiring the masking of sensitive information—such as passwords, emails, phone numbers, and API keys—within application logs.
- [SAFE]: Prohibits the storage of secrets, passwords, or API keys directly in the source code, mandating the use of environment variables or secret managers.
- [SAFE]: Promotes secure database management by requiring migration rollback scripts and forbidding the use of
synchronize: truein production environments. - [SAFE]: Employs standard, well-known industry libraries and tools (e.g., TypeORM, Zod, ESLint) and follows legitimate development workflows without suspicious remote code execution.
Audit Metadata