sqlalchemy
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and examples for using the SQLAlchemy 2.0 library. It includes instructions for installing official packages from standard registries (PyPI).
- [SAFE]: Hardcoded connection strings (e.g.,
postgresql://user:pass@localhost/mydb) use obvious dummy placeholders and are marked withpragma: allowlist secret, indicating they are for educational purposes and not real credentials. - [SAFE]: The skill explicitly promotes security by warning against SQL injection and providing compliant, parameterized query examples using both the SQLAlchemy expression language and
text()constructs. - [SAFE]: No obfuscation, unauthorized data exfiltration, or persistence mechanisms were detected in the instructions or scripts.
Audit Metadata