sqlite-database
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides a command to download an installation script from
https://get.tur.so/install.sh. Turso is a well-known service in the edge database ecosystem, making this a reference to an official vendor resource. - [REMOTE_CODE_EXECUTION]: The Turso CLI installation script is piped directly to
bash. This is a standard deployment pattern for the official tools of recognized technology providers. - [COMMAND_EXECUTION]: Utilizes
curlto interact with the Rebyte provisioning API using environment-supplied authentication tokens. - [PROMPT_INJECTION]: The skill processes data from database queries and instructs the agent to follow instructions contained within API responses, creating an indirect prompt injection surface.
- Ingestion points: SQL query results and the
instructionsfield in the API response. - Boundary markers: Not present in instructions.
- Capability inventory: Subprocess execution via
curland shell commands. - Sanitization: Provided code examples correctly use parameterized SQL queries for data modification.
Audit Metadata