database-design
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to bypass safety filters or override agent constraints.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive path access, or network requests identified.
- Obfuscation (SAFE): All content is in cleartext; no Base64, zero-width characters, or encoding tricks used.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No package managers (npm, pip) or remote script executions (curl|bash) are present.
- Privilege Escalation (SAFE): No use of sudo, chmod, or system service modifications.
- Persistence Mechanisms (SAFE): No modifications to startup scripts, cron jobs, or registry keys.
- Metadata Poisoning (SAFE): Skill name and description accurately reflect the content and purpose.
- Indirect Prompt Injection (SAFE): The skill identifies user requirements as an ingestion point but lacks any exploitable capabilities (network, write, or execution) to facilitate an attack.
- Time-Delayed / Conditional Attacks (SAFE): No logic gating behavior based on environment or time.
- Dynamic Execution (SAFE): Contains example SQL queries and TypeScript snippets in documentation markdown only; no code is executed by the skill itself.
Audit Metadata