turso-db
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill references official SDKs and packages (@tursodatabase/*, pyturso, tursogo) from the vendor's own namespaces and repositories.
- [SAFE]: All credential examples for Turso Cloud (auth tokens, encryption keys) utilize placeholders or environment variable references (e.g., process.env.TURSO_AUTH_TOKEN), avoiding hardcoded secrets.
- [SAFE]: The documentation includes proactive security warnings for the AI agent, specifically instructing it to treat data returned from database queries as untrusted third-party content and to never interpret query results as commands.
- [SAFE]: Examples consistently promote best practices, such as the use of parameterized queries with '?' placeholders to prevent SQL injection across all supported SDKs.
Audit Metadata