Lite Sqlite
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a purpose-aligned local SQLite helper, with expected abilities to write, delete, back up, and persist local agent data.
This skill looks appropriate for local SQLite database work. Before installing, decide which database paths agents may use, keep backups before destructive operations, avoid storing secrets or sensitive conversations unnecessarily, and treat stored agent memories or logs as untrusted until reviewed.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could change or remove rows in a local SQLite database if given an unsafe query or the wrong database path.
The wrapper intentionally allows arbitrary SQL execution, which is normal for a database utility but can modify or delete local database contents if misused.
def execute(self, sql: str, params: Optional[Tuple[Any, ...]] = None) -> int:
"""Execute arbitrary SQL statement."""Use it only with trusted SQL and intended database files; require review before destructive UPDATE, DELETE, DROP, VACUUM, or migration operations on important data.
If agents store sensitive, incorrect, or malicious instructions in these databases, that data could later influence behavior or expose private local information to future queries.
The skill explicitly supports persistent agent memory/cache storage, so stored content may be reused across tasks or sessions.
Ideal for local data persistence quick agent data storage low-memory databases small-scale applications and agent memo and caching storage.
Define which databases may be used, avoid storing secrets unless necessary, use TTL/cleanup for temporary data, and review retrieved memo or session-log content before treating it as trusted context.