surrealdb

SUSPICIOUS: the core database-backed virtual filesystem and SurrealDB credential use are internally consistent, but the skill also enables host command execution through pipe commands and includes default telemetry, which broadens data-flow and execution scope beyond a typical filesystem abstraction. Registry-based installs and direct SurrealDB connections keep it below malicious, but it carries medium risk for AI-agent use.