neon-postgres
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation reference. It directs the agent to fetch up-to-date information from official documentation pages on neon.com. All network operations described are for retrieving documentation in markdown format.
- [EXTERNAL_DOWNLOADS]: The skill references several official packages and tools including 'neonctl' (via npx), '@neondatabase/serverless', '@neondatabase/api-client', and the 'neon-api' Python package. These are standard official libraries for the service described and do not pose a security risk in this context.
- [INDIRECT_PROMPT_INJECTION]: The skill encourages fetching external documentation from 'neon.com'. While this constitutes a data ingestion surface, the source is the official service provider, and the skill does not grant the agent dangerous capabilities that could be exploited via these docs. Standard documentation retrieval is a common and intended use case for AI agents.
Audit Metadata