azuresql-db-scaffold

Pass

Audited by Gen Agent Trust Hub on Jul 8, 2026

Risk Level: SAFE
Full Analysis
  • Use of Standard Credentials: The skill uses a placeholder password ('YourStr0ng_Passw0rd') in its examples, which is a standard educational practice for demonstrating container setup. It instructs users to provide their own complex password for actual deployments.
  • Container and Image Security: It references a specific container registry for the Azure SQL Developer preview. While this involves a remote image download, it is part of the documented purpose of the skill to provide the correct Azure SQL engine environment.
  • Secure Data Access Patterns: The skill explicitly warns against SQL injection by mandating the use of parameterized queries across all supported frameworks (.NET, FastAPI, Prisma, TypeORM).
  • Network and Port Management: It includes logic to dynamically find an available host port for the SQL container, reducing potential conflicts and ensuring local environment stability.
  • Environment Variable Handling: It correctly identifies that sensitive information like connection strings should be managed via environment variables and provides guidance on how applications should consume them.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 8, 2026, 04:22 AM
Security Audit — agent-trust-hub — azuresql-db-scaffold