database-query-analysis
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill facilitates access to sensitive Magento 2 database tables containing customer PII (Personally Identifiable Information), order history, and system configurations. This is a functional requirement of the skill's stated purpose for data analysis.
- [INDIRECT_PROMPT_INJECTION]: The skill processes results from external database queries, which creates a surface for indirect prompt injection if the database contains content controlled by an untrusted actor (e.g., product reviews or customer names).
- Ingestion points: Results from SQL queries executed via
mcp__magento2-dev__db-queryandmcp__magento2-dev__config-show(SKILL.md). - Boundary markers: Absent; the skill does not explicitly instruct the agent to ignore instructions embedded within retrieved data.
- Capability inventory: Database read access via SQL query execution (SKILL.md).
- Sanitization: Not specified; the skill relies on standard tool outputs.
Audit Metadata