ducklake-test
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on shell commands to manage the local development lifecycle.
- Compiles local Go source code using
go buildand executes the resulting binary. - Orchestrates local dependencies (PostgreSQL and MinIO) using
docker-compose. - Manages local processes using
pkill. - [CREDENTIALS_UNSAFE]: The instructions include hardcoded credentials for test services.
- Hardcodes
minioadmin(standard default for local MinIO) for S3 access. - Hardcodes
password=ducklakefor a local PostgreSQL metadata store. - These credentials target services running on
localhostand are intended for local development environments.
Audit Metadata