The Agent Skills Directory

[SAFE]: Credential management follows best practices by using environment variables (${DB2i_HOST}, ${DB2i_USER}, ${DB2i_PASS}) instead of hardcoded plaintext secrets within the tool definitions.
[SAFE]: All SQL queries defined in the tools use parameter binding (e.g., :asp_number_filter, :limit) for dynamic values, which is the standard defense against SQL injection.
[SAFE]: The skill is scoped to diagnostic and monitoring activities, with tool definitions explicitly set to read-only mode, preventing accidental or malicious modification of the IBM i system.
[SAFE]: The database source configuration includes the ignore-unauthorized: true flag, which bypasses SSL certificate validation. This is a common and acceptable practice in controlled enterprise environments where internal database servers use self-signed certificates.

storage