database-query

Query database safely with parameterized statements

Invalid

This skill can't be scored yet

Validation errors are blocking scoring. Review and fix them to unlock Quality, Impact and Security scores. See what needs fixing →

Evaluation results

100%

Customer Search API

Parameterized query usage

Criteria

Without context

With context

Parameterized search query

100%

No f-string SQL in search

100%

Parameterized ID lookup

100%

No f-string SQL in ID lookup

100%

Notes mention input handling

100%

Inventory Filter Script

Safe query with dynamic filters

Criteria

Without context

With context

Parameterized category filter

100%

Parameterized quantity filter

100%

No string formatting in SQL

100%

Notes mention query construction

100%

Both parameters passed together

100%

User Account Service Refactor

Avoid SQL injection in refactored code

Criteria

Without context

With context

Parameterized username lookup

100%

No string concat in username query

100%

Parameterized account type query

100%

No f-string in account type query

100%

Security review identifies injection

100%

Security review mentions parameterized

100%

Repository: cisco-ai-defense/skill-scanner
Commit: f726e6a

Evaluated: about 1 month ago
Agent: Claude Code
Model: Claude Sonnet 4.6

Table of Contents

Customer Search API Inventory Filter Script User Account Service Refactor

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.