The Agent Skills Directory

[COMMAND_EXECUTION]: The skill extracts SQL statements from the local repository and interpolates them into shell commands executed via the mysql CLI (e.g., mysql -e 'EXPLAIN ...'). This process does not include sanitization of the extracted content, creating a risk of command injection if the repository contains shell-sensitive characters like backticks or dollar signs inside comments or strings.
[DATA_EXFILTRATION]: The skill transmits repository DDL (Data Definition Language) and inferred data metadata to an external API at zero.polardbx.com. This is a vendor-owned resource used for the skill's intended purpose of provisioning a test environment, but users should be aware of the data transfer.
[CREDENTIALS_UNSAFE]: Database passwords provided by the remote service or the user are passed to the mysql CLI using the -p flag. This exposure can allow other users or processes on the same system to see the credentials by inspecting the process table (e.g., using ps commands).

sql-review