neo4j
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install well-known, official packages ('neo4j-driver' via npm and 'neo4j' via pip) from standard registries.
- [COMMAND_EXECUTION]: Provides a standard Docker command to run a local Neo4j instance for development purposes.
- [CREDENTIALS_UNSAFE]: Includes a hardcoded password ('password123') in code snippets and configuration; however, these are clearly documented as placeholders for a local development container initialized in the installation instructions.
- [SAFE]: Demonstrates secure database interaction patterns by using Cypher query parameters (e.g., '$name') in both Node.js and Python drivers to prevent injection attacks.
Audit Metadata