ln-651-query-efficiency-auditor
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates as a static analysis worker, identifying database performance issues in codebases. Its workflow involves reading files, grepping for patterns, and tracing call chains using provided MCP tools (hex-line, hex-graph) or standard fallbacks (Grep, Read, Bash).
- [COMMAND_EXECUTION]: The skill requests the Bash tool, but its use is limited to scanning for violations and running local analysis scripts as a fallback. No arbitrary command execution or suspicious shell patterns were identified in the instructions or scripts.
- [DATA_EXFILTRATION]: The skill processes database configurations and codebase content to identify efficiency gaps. It writes findings to a local markdown report and a JSON summary file within the run-scoped artifact directory. No network exfiltration or unauthorized data transmission patterns were found.
- [PROMPT_INJECTION]: The instructions focus strictly on auditing database query patterns. No attempts to override agent behavior, bypass safety filters, or extract system prompts were detected.
- [EXTERNAL_DOWNLOADS]: The skill does not perform external downloads or remote script execution. The provided scripts are local Node.js modules for managing runtime state and artifacts.
Audit Metadata