Postgres Job Queue

Security checks across malware telemetry and agentic risk

Overview

This is a PostgreSQL job-queue reference skill with disclosed install instructions and no hidden executable behavior.

Safe to use as reference material. Before running the README install command, prefer the reviewed ClawHub artifact or inspect and pin the GitHub source, and review the SQL before applying it to a real database.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger description includes broad terms such as 'background jobs', 'task queue', and 'priority queue', which can match many common developer requests beyond this skill's intended scope. This can cause unintended invocation of the skill, exposing users to irrelevant guidance and increasing the chance the agent selects this skill inappropriately in multi-skill environments.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal