Skills
skills/prisma/prisma-next/prisma-next-quickstart/Gen Agent Trust Hub

prisma-next-quickstart

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to run various pnpm prisma-next commands to initialize projects, manage database schemas, and apply migrations.\n- [EXTERNAL_DOWNLOADS]: The skill uses pnpm dlx prisma-next init to download and execute the initialization utility from the official package registry.\n- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface because it reads data from the local environment and databases to guide its actions.\n
  • Ingestion points: Local configuration files (prisma-next.config.ts, .env), contract files (src/prisma/contract.prisma), and the database schema (via the contract infer command) are read into the agent's context.\n
  • Boundary markers: No explicit boundary markers or instructions to disregard embedded content are present when reading these files.\n
  • Capability inventory: The agent can execute shell commands via pnpm (e.g., db init, contract emit) and access the local file system.\n
  • Sanitization: No input validation or sanitization of the data read from files or the database is specified before it is used to influence agent behavior.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 06:16 AM