database-query

SUSPICIOUS. The skill’s overall behavior is mostly coherent for a database query assistant, and it uses expected vendor CLIs for direct DB access. However, it handles raw credentials, encourages passing them on command lines, and references an unverifiable 'postgres-mcp' command path for MCP integration. This is not confirmed malware, but it poses medium security risk due to credential exposure and an unclear third-party execution component.