migration-agent
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill defines a set of allowed Rails CLI commands such as
bin/rails db:migrate,bin/rails generate migration, andbin/rails db:rollback. These are standard tools for database management in Rails applications and are used here within their intended scope. - [DATA_EXPOSURE]: The agent is instructed to read local project files (models, validators, specs, and schema) to gain context. It does not attempt to access sensitive system files (e.g., .env, SSH keys, cloud credentials) or exfiltrate data to external servers.
- [PROMPT_INJECTION]: There are no detected attempts to override system prompts, bypass safety filters, or use adversarial role-playing techniques. The instructions are purely technical and focused on database safety.
- [REMOTE_CODE_EXECUTION]: The skill does not contain instructions to download external scripts or execute code from untrusted remote sources. It relies on the local Rails environment and standard gems.
Audit Metadata