You're right. Skipper currently doesn't test such specific use-cases and allows to create anything what user want.
It's because it is nearly impossible to exactly define all allowed and denied states
And also there are a lot of users who hacked/modified/extend existing ORM frameworks and need to use features/definitions which aren't available to another users.