azuresql-db-scaffold
Pass
Audited by Gen Agent Trust Hub on Jul 8, 2026
Risk Level: SAFE
Full Analysis
- Use of Standard Credentials: The skill uses a placeholder password ('YourStr0ng_Passw0rd') in its examples, which is a standard educational practice for demonstrating container setup. It instructs users to provide their own complex password for actual deployments.
- Container and Image Security: It references a specific container registry for the Azure SQL Developer preview. While this involves a remote image download, it is part of the documented purpose of the skill to provide the correct Azure SQL engine environment.
- Secure Data Access Patterns: The skill explicitly warns against SQL injection by mandating the use of parameterized queries across all supported frameworks (.NET, FastAPI, Prisma, TypeORM).
- Network and Port Management: It includes logic to dynamically find an available host port for the SQL container, reducing potential conflicts and ensuring local environment stability.
- Environment Variable Handling: It correctly identifies that sensitive information like connection strings should be managed via environment variables and provides guidance on how applications should consume them.
Audit Metadata