postgres

SUSPICIOUS: The skill’s database-oriented capabilities are coherent with its stated purpose, and its data flows mostly match normal Postgres operations. However, its runtime depends on bundled precompiled binaries whose provenance is not verifiable from the provided text, and those binaries receive database credentials; this triggers high security risk despite limited evidence of intentional malware.