drizzle-orm
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a technical reference for Drizzle ORM. All code snippets demonstrate legitimate usage of the library for database schema definition, querying, and performance management.
- [SAFE]: Security best practices are explicitly encouraged. The 'Red Flags' section in the main documentation warns users against building raw SQL strings without the
sqltemplate, which is a key defense against SQL injection. - [SAFE]: Secret management is handled correctly. Examples utilize
process.envfor database connection strings and passwords rather than hardcoding credentials. - [SAFE]: All external dependencies mentioned (such as
drizzle-orm,pg,mysql2,zod, anddrizzle-kit) are well-known, widely used packages from the official npm registry.
Audit Metadata