postgresql-administration

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes examples that embed plaintext passwords and connection strings (e.g., "postgresql://user:pass@host:5432/mydb", CREATE ROLE ... PASSWORD 'repl_pass', and subscription CONNECTION strings), which encourages generating commands or SQL that include secret values verbatim, creating exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill includes explicit instructions that modify system configuration and service state (editing postgresql.conf/pg_hba.conf, running systemctl start/stop, rm -rf /var/lib/postgresql/data, cp to system paths, and WAL/archive commands) which require elevated privileges and can change or damage the host system.