SQLBot
v1.1.0Manage SQLBot workspaces, datasources, ask-data flows, and dashboards, including listing and switching workspace or datasource context, asking questions agai...
⭐ 0· 49·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name/description match the included script and instructions: the skill is a CLI wrapper that lists/switches workspaces and datasources, asks questions, lists and exports dashboards. The script expects SQLBot base URL and API key pair in a .env file — that is appropriate for a service-integrating skill. One minor inconsistency: the registry metadata shows no required env vars, but the SKILL.md and the script clearly require SQLBOT_BASE_URL, SQLBOT_API_KEY_ACCESS_KEY and SQLBOT_API_KEY_SECRET_KEY; this is an omission in the registry metadata rather than a functional mismatch.
Instruction Scope
The SKILL.md tells the agent to run the bundled python script under ${CLAUDE_SKILL_DIR} and to check for and use a .env next to the skill. The script will read that .env and may be given a different --env-file. It will make HTTP calls to the configured SQLBot base URL and may invoke Playwright (browser) for exports. The skill also writes a small local state file (default .sqlbot-skill-state.json) to persist current workspace/datasource. It does not instruct the agent to read arbitrary unrelated system files or transmit data to unknown external endpoints — network activity is scoped to SQLBOT_BASE_URL (derived frontend preview URLs are deduced from that base URL).
Install Mechanism
There is no install spec; this is essentially an instruction-only skill that runs the included Python script. No external downloads or remote installers are referenced in SKILL.md. The only optional runtime dependency is Playwright for exports, which the SKILL.md instructs how to install via pip/playwright (a known tool).
Credentials
The script legitimately needs SQLBot credentials (base URL, access key, secret key) to call the service; those are requested via a .env file. That is proportionate to the stated functionality. As noted above, the skill registry entry did not declare those env vars as required, so the registry metadata underreports the secrets the skill needs. The script keeps credentials in process memory to sign API requests but does not appear to persist the secrets to disk (it does persist only the workspace/datasource state).
Persistence & Privilege
The skill writes a local state file (by default in the skill directory) to persist current workspace and datasource selection — this is reasonable for its workflow. It does not request always: true and does not modify other skills or global agent configs. SKILL.md sets disable-model-invocation: true (it will not invoke the model autonomously), which reduces risk.
Assessment
This skill appears to do what it says: it runs a local Python script that calls your SQLBot instance and saves a small local state file. Things to consider before installing:
- You must supply SQLBOT_BASE_URL and an API key pair in a .env next to the skill (or via --env-file). Only provide these credentials if you trust the SQLBot endpoint and are okay with the skill making signed requests on your behalf.
- The skill will write a state file (default .sqlbot-skill-state.json) into the skill directory (or another configured path). If you need isolation, change SQLBOT_STATE_FILE to a safe location.
- Exporting dashboards uses Playwright (a browser) and a derived frontend preview URL — the browser will send the same API auth headers to the SQLBot frontend. Install Playwright only if you trust this workflow.
- The registry metadata omits the required env vars. Confirm you’re comfortable creating a .env with secrets before enabling the skill. If you want extra assurance, review the full sqlbot_skills.py source locally or run it in an isolated environment/container.Like a lobster shell, security has layers — review code before you run it.
latestvk97bqraxt8tbjcetkp4zy2vpdd83yjv8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.