tigris-snapshots-recovery
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the installation and use of the official Tigris CLI (@tigrisdata/cli) through shell commands to manage object storage buckets and snapshots.
- [EXTERNAL_DOWNLOADS]: The skill references and installs official Tigris Data packages from public registries, including the @tigrisdata/cli NPM package and the tigris-boto3-ext Python library.
- [PROMPT_INJECTION]: Indirect prompt injection surface identified in data restoration workflows. * Ingestion points: File content and metadata retrieved from Tigris buckets via SDK operations. * Boundary markers: Absent; object content is processed directly by the agent. * Capability inventory: Uses SDK methods and CLI commands to read from and write to cloud storage. * Sanitization: No validation or escaping of the retrieved object content is demonstrated before it is processed or restored.
Audit Metadata