query-optimize
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill defines a standard workflow for SQL query analysis and performance optimization using dedicated tools. No malicious code, credential exposure, or exfiltration patterns were detected.
- [PROMPT_INJECTION]: The skill processes untrusted SQL content from user input and local files, creating a surface for indirect prompt injection.
- Ingestion points: User-provided SQL text and content from local files read via the
readtool (SKILL.md). - Boundary markers: Absent.
- Capability inventory: File system access (
read,glob), warehouse introspection (schema_inspect,warehouse_list), and SQL analysis tools (sql_optimize,sql_analyze,sql_explain). - Sanitization: Absent.
- Mitigation: Users should wrap processed content in delimiters and review any suggested SQL rewrites before execution.
Audit Metadata