netlify-database
Pass
Audited by Gen Agent Trust Hub on May 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill originates from a trusted organization and focuses on the official documentation and configuration for its GA managed database service. It adheres to security best practices such as recommending parameterized queries and cautioning against direct production database modifications.
- [EXTERNAL_DOWNLOADS]: The instructions recommend installing official packages from the npm registry, including "@netlify/database", "drizzle-orm", and "drizzle-kit". These are recognized dependencies required for the stated functionality of the skill.
- [COMMAND_EXECUTION]: The skill guides the user through the use of the Netlify CLI ("netlify database" commands) for provisioning, status checks, and migration management. This is standard and expected behavior for interacting with the vendor's platform.
- [CREDENTIALS_UNSAFE]: While the skill discusses connection strings and environment variables such as "NETLIFY_DB_URL", it does so in the context of standard configuration. It correctly advises against hardcoding credentials and instead focuses on using the CLI to retrieve connection details when necessary.
Audit Metadata