postgres
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices by explicitly instructing users to avoid hardcoding credentials and instead use environment variables or secret stores for database connection strings.
- [COMMAND_EXECUTION]: The skill makes use of the
run_terminal_cmdtool to interact with the PostgreSQL command-line interface (psql). This behavior is transparently documented and necessary for the skill's stated purpose of database administration. - [EXTERNAL_DOWNLOADS]: The skill references several external resources, including official documentation for PostgreSQL, TimescaleDB, and the pgvector extension. These links point to well-known, trusted domains and do not involve the execution of untrusted remote scripts.
- [DATA_EXPOSURE]: The skill includes instructions for table introspection and monitoring using
pg_stat_statements. These operations are standard for database maintenance and do not involve unauthorized exfiltration of sensitive data.
Audit Metadata