Duckdb Cli
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent DuckDB CLI reference skill; it can guide local data reads, writes, and conversions, so users should review commands before running them.
This skill appears safe to install as a DuckDB CLI reference. Before letting an agent run generated DuckDB commands, check that the SQL, input files, output files, and database names are correct, especially when working with sensitive data or existing databases.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent runs similar commands, it may read local datasets or create/overwrite converted files.
The skill provides local DuckDB command examples that read local data and write output files. This is purpose-aligned for data conversion, but commands should be reviewed before execution to avoid unintended file reads, overwrites, or data changes.
duckdb -c "COPY (SELECT * FROM 'input.csv') TO 'output.parquet' (FORMAT PARQUET)"
Confirm file paths, output destinations, and SQL statements before allowing the agent to run DuckDB commands, especially on important databases or sensitive files.
The package identity is slightly inconsistent, so users may want to verify they are installing the intended skill.
The embedded metadata identity differs from the supplied registry metadata, which lists a different owner ID and slug. Because this is instruction-only with no code or installer, this is a provenance note rather than a security concern.
"ownerId": "kn722te0hedhg7q4jjpa9sv3jx7zv1gn", "slug": "duckdb-cli-ai-skills"
Verify the publisher/source if provenance matters to you; otherwise, the provided artifacts do not show hidden code or unsafe install behavior.