skills/jeremylongshore/claude-code-plugins-plus-skills/generating-stored-procedures/Gen Agent Trust Hub
generating-stored-procedures
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Python
subprocess.runmodule to interact with database client tools such aspsql,mysql, andsqlcmd. These tools are invoked inscripts/database_connection_test.pyandscripts/stored_procedure_deployer.pyfor connectivity testing and SQL deployment. The implementation uses list-based arguments to prevent shell injection, representing a standard and secure way to interact with database CLIs. - [SAFE]: A dedicated validation script,
scripts/stored_procedure_syntax_validator.py, is provided to perform static analysis on the generated SQL. This script checks for common syntax errors and security risks, such as insecure PostgreSQLSECURITY DEFINERconfigurations or potential SQL injection patterns, before the code is deployed to a database. - [SAFE]: The skill includes extensive documentation in the
references/directory covering security guidelines, optimization techniques, and platform-specific best practices for PostgreSQL, MySQL, and SQL Server. This provides the agent with the necessary context to generate secure and performant database code.
Audit Metadata