altinity-expert-clickhouse-connection

SUSPICIOUS. The skill’s database-diagnostic behavior is largely aligned with its stated purpose and `clickhouse-client` use is normal, but the instruction to use any MCP server with 'clickhouse' in the name creates avoidable trust and credential-forwarding risk. Risk is medium rather than high because there is no explicit exfiltration endpoint, no malicious payload, and official same-org ClickHouse/Altinity MCP options do exist.