drizzle-orm-d1
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill contains legitimate TypeScript templates, SQL migration examples, and markdown documentation for Drizzle ORM and Cloudflare D1. All external references point to official documentation and trusted repositories.
- [COMMAND_EXECUTION]: A version-checking utility script (
scripts/check-versions.sh) is provided for developers to verify local environment dependencies using standard npm commands. The script does not execute automatically and contains no malicious payloads. - [INDIRECT_PROMPT_INJECTION]: The REST API template in
templates/cloudflare-worker-integration.tsdefines a standard ingestion surface for external data. - Ingestion points: User-supplied JSON bodies and URL parameters processed via
c.req.json()andc.req.param()intemplates/cloudflare-worker-integration.ts. - Boundary markers: Standard HTTP protocol parsing and JSON schema structure; no natural language safety delimiters are present.
- Capability inventory: Full database CRUD (Create, Read, Update, Delete) access via Drizzle ORM.
- Sanitization: The code utilizes
parseIntfor numeric identifiers and relies on Drizzle ORM's native parameterized query generation to prevent SQL injection.
Audit Metadata