ClawHub

sql-explain

v1.0.0

解析和优化 PostgreSQL、MySQL、SQLite SQL查询计划,支持SQL生成、格式化及语法检查。

0· 47·0 current·0 all-time
by@shenghoo123-png
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (SQL explain/format/check/nl2sql) align with the provided Python modules (sql_explain.py and cli.py). No credentials, binaries, or config paths are requested that would be unrelated to the stated purpose.
Instruction Scope
SKILL.md instructs the agent to parse SQL and EXPLAIN output using sqlparse or sqlean; the shipped implementation uses sqlparse + regex/built-in rules and does not access files, environment variables, or network endpoints. There is no instruction to execute SQL against a live database, only to parse/format/analyze text.
Install Mechanism
No install spec in registry (instruction-only). The code depends on the public Python package sqlparse (README suggests pip install). No remote download/install URLs or archive extraction are present in the package metadata.
Credentials
No required environment variables, secrets, or external credentials are requested. The skill does not reference system credentials or unexpected environment variables.
Persistence & Privilege
always:false and no code attempts to modify other skills or persistent agent-wide settings. The skill is user-invocable and may be invoked autonomously as normal, but it does not request elevated persistence.
Assessment
This skill appears coherent and local-only: it parses/format/explains SQL text and generates SQL from natural language without contacting external services or requesting credentials. A few non-security inconsistencies to be aware of: SKILL.md and README mention optionally using 'sqlean' and commercial tiers (saving history, Pro/Team) — the included code only uses sqlparse and contains no billing or storage logic. If you plan to run it, review the code in sql_explain.py (already small and readable), install the dependency (pip install sqlparse) in an isolated environment, and run the bundled tests (pytest) if you want extra assurance. If you need actual EXPLAIN output from a live database, note this tool only parses text — it will not connect to or run queries against your databases.

Like a lobster shell, security has layers — review code before you run it.

latestvk97cj5p01cz2fan9pw284zhxn984d0j3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments