ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Database Engineering Mastery

v1.0.0

Database Engineering Mastery covers schema design, indexing, query optimization, and migration for PostgreSQL, MySQL, SQLite, supporting OLTP/OLAP workloads.

1· 636·0 current·0 all-time
by@1kalin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (schema design, indexing, tuning, migrations for Postgres/MySQL/SQLite) match the SKILL.md and README content. No unrelated env vars, binaries, or install steps are requested.
Instruction Scope
SKILL.md is a large, prescriptive set of templates, SQL examples, and runbooks — all within the domain of DB engineering. It does not include instructions to read local system files, install software, or exfiltrate data. Note: the skill can generate actionable DDL/DML and migration steps; it does not itself execute them, so the primary risk is a user copy-pasting generated SQL into a production DB without review.
Install Mechanism
No install spec and no code files — instruction-only (lowest install risk). README links to external AfrexAI pages but there is no code download or archive referenced.
Credentials
The skill requests no environment variables, credentials, or config paths. This is proportionate for a guidance/consultant skill that produces SQL and operational guidance but does not connect to systems itself.
Persistence & Privilege
always is false and there is no indication the skill modifies other skills or system-wide settings. It is user-invocable and can be invoked autonomously per platform defaults; that is expected for this type of skill.
Assessment
This skill appears to be a coherent, text-only database-engineering guide. Before using it in a live environment: do not paste generated migrations or destructive SQL into production without human review; use a least-privilege/test account when trying suggested commands; never supply production credentials to an agent without strict controls; review and test migration/rollback steps in staging; and verify any external links or paid offers in the README independently (the skill references AfrexAI pages). If you need the agent to run SQL against your database, provision a restricted test database or a read-only user and audit all changes.

Like a lobster shell, security has layers — review code before you run it.

databasevk975cbjq629qtsh4ysrw1635ed819259latestvk975cbjq629qtsh4ysrw1635ed819259migrationvk975cbjq629qtsh4ysrw1635ed819259mysqlvk975cbjq629qtsh4ysrw1635ed819259optimizationvk975cbjq629qtsh4ysrw1635ed819259postgresqlvk975cbjq629qtsh4ysrw1635ed819259schemavk975cbjq629qtsh4ysrw1635ed819259sqlvk975cbjq629qtsh4ysrw1635ed819259sqlitevk975cbjq629qtsh4ysrw1635ed819259

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments