sqlite
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical manual for SQLite development, providing standard code templates for registering Python functions (Scalar, Aggregate, Window) using the standard library
sqlite3module. - [SAFE]: Documentation is provided for compiling C extensions using shell commands (e.g.,
gcc,cl) and loading them viaconn.load_extension. These are core SQLite features and are accompanied by security recommendations to lock extension loading after use. - [SAFE]: The skill explicitly identifies and provides mitigations for Indirect Prompt Injection risks. It documents how a malicious database schema could attempt to trigger custom functions and recommends using
PRAGMA trusted_schema = OFFas a mandatory security control. - [SAFE]: All references to external tools and extensions (such as
sqlite-vec,spatialite, andsqlean) are for well-known, established community plugins and are presented in an informative, neutral context.
Audit Metadata