data-provenance
Fail
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE]: The automated scanner detection of 'orders.id' as a malicious URL is a false positive. In the context of the SQL examples provided, 'orders.id' refers to the 'id' column within an 'orders' database table, not a remote URL.
- [SAFE]: The skill contains Python code snippets using standard, well-known libraries including 'sqlparse', 'sqllineage', 'kafka-python', and 'graphviz'. These are provided as implementation templates for data analysis and visualization with no evidence of malicious remote code execution or unauthorized network activity.
- [SAFE]: All provided SQL DDL and query examples are documentation for the user/agent to structure data governance systems. There are no hardcoded credentials, attempts at privilege escalation, or persistence mechanisms.
- [SAFE]: Instructions are focused on data auditing and compliance (GDPR, HIPAA, etc.) and do not contain prompt injection patterns or attempts to override AI safety guardrails.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata