surrealdb

SUSPICIOUS. The core purpose is coherent with persistent virtual filesystem operations and SurrealDB credentials, but the host command execution feature (pipe commands), remote content ingestion, optional telemetry, and HTTP agent exposure make the footprint broader and riskier than a typical filesystem abstraction. No clear evidence of malware or credential theft is present, but this is a medium-high risk skill for agent use, especially when handling untrusted prompts or content.