db-enforcer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill contains instructional content for database management and does not include any attempts to override agent behavior, bypass safety filters, or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network operations were identified. The skill focuses on secure database practices like Row-Level Security (RLS).
- [Obfuscation] (SAFE): All files consist of clear, human-readable Markdown and SQL/Prisma snippets. No encoded content, zero-width characters, or homoglyphs were found.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill references standard industry tools like 'Prisma' and 'Bun'. Commands such as 'bun prisma migrate' are standard for the described workflow and do not involve piped remote script execution or untrusted third-party packages.
- [Privilege Escalation] (SAFE): There are no commands attempting to gain administrative privileges (e.g., sudo, chmod 777) or modify system-level configurations.
- [Persistence Mechanisms] (SAFE): No attempts to establish persistence through shell profiles, cron jobs, or startup services were detected.
- [Indirect Prompt Injection] (SAFE): While the skill involves processing database schemas, it does not demonstrate a vulnerability to indirect injection that would lead to unauthorized actions or data leakage. It lacks high-risk capabilities like arbitrary file writing or outbound network requests.
- [Dynamic Execution] (SAFE): The skill does not use 'eval()', 'exec()', or any runtime code generation/compilation techniques.
Audit Metadata