sqlite-database

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides a command to download an installation script from https://get.tur.so/install.sh. Turso is a well-known service in the edge database ecosystem, making this a reference to an official vendor resource.
  • [REMOTE_CODE_EXECUTION]: The Turso CLI installation script is piped directly to bash. This is a standard deployment pattern for the official tools of recognized technology providers.
  • [COMMAND_EXECUTION]: Utilizes curl to interact with the Rebyte provisioning API using environment-supplied authentication tokens.
  • [PROMPT_INJECTION]: The skill processes data from database queries and instructs the agent to follow instructions contained within API responses, creating an indirect prompt injection surface.
  • Ingestion points: SQL query results and the instructions field in the API response.
  • Boundary markers: Not present in instructions.
  • Capability inventory: Subprocess execution via curl and shell commands.
  • Sanitization: Provided code examples correctly use parameterized SQL queries for data modification.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 05:39 PM
Security Audit — agent-trust-hub — sqlite-database