motherduck-build-dashboard

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill utilizes the 'uv' tool to install 'duckdb' from a standard registry (PyPI). This is a well-known dependency required for the skill's primary functionality.
  • [COMMAND_EXECUTION]: The documentation provides instructions to execute local Python and TypeScript artifacts using 'uv' for verification and testing purposes.
  • [PROMPT_INJECTION]: The skill ingests MotherDuck database metadata and query results to inform dashboard generation. Ingestion points: MotherDuck database schemas and results. Boundary markers: Not present in templates. Capability inventory: Generates and updates 'Dives' (React components) that execute SQL. Sanitization: Includes type-safety helpers like 'N()' in the resulting component code.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 06:31 PM
Security Audit — agent-trust-hub — motherduck-build-dashboard