Postgres Manager

If invoked with the wrong database name, the user could modify or delete a local development database.

The script exposes database mutation operations including create, drop, and dump/import. These are central to the skill's purpose and include validation and confirmation for drop-db, but they can still alter or remove local development data.

On a shared machine or shared Docker network, other local containers/users could access the dev database if the default password is left unchanged.

The container defaults to a simple development password. The artifacts disclose this and bind the host port to localhost, but other containers on the shared Docker network may be able to connect using the default credentials.

The container image source is a normal dependency for this kind of skill, but users rely on the upstream Docker image matching the expected PostgreSQL build.

The runtime depends on pulling a public Docker image. The tag is version-pinned, which is better than latest, but it is not digest-pinned.

The database service and its data may remain available after the immediate task completes, consuming resources and retaining local data.

The PostgreSQL container is configured to keep running and restart after Docker daemon restarts. This persistence is disclosed in SKILL.md and is expected for a local database service.