configuration
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a configuration-only package that defines SQL queries for IBM i system administration. No malicious code or patterns were detected.
- [DATA_EXPOSURE]: The skill exposes system configuration details such as system values (QSECURITY, etc.), hardware inventory, and environment variables. This access is consistent with the skill's primary stated purpose of system administration and all tools are explicitly configured as read-only.
- [CREDENTIALS_SAFE]: The database connection configuration in
tools/configuration.yamluses environment variables (${DB2i_HOST},${DB2i_USER},${DB2i_PASS}) for authentication. This follows security best practices by avoiding hardcoded secrets within the skill files. - [INDIRECT_PROMPT_INJECTION]: The tools accept user-defined parameters for filtering query results (e.g.,
sysval_name,category_filter). These inputs are processed using SQL parameter binding (e.g.,:sysval_name), which provides strong sanitization against SQL injection and ensures the agent treats user input as data rather than instructions.
Audit Metadata