dev-ddl
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to Indirect Prompt Injection.
- Ingestion points: The skill reads input from documentation files located at
/projectdocs/design/{name}_design.mdand/projectdocs/design/{db}_current_{timestamp}.sql. - Boundary markers: There are no defined delimiters or instructions to ignore embedded commands within the ingested documentation files.
- Capability inventory: The skill writes files to the local file system (
/projectdocs/dev/) and generates SQL scripts designed for execution on a database. - Sanitization: There is no evidence of sanitization or structural validation for the content retrieved from the design documents before it is used to generate SQL output.
Audit Metadata