The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses run_terminal_cmd to execute database introspection and query analysis commands, such as psql and EXPLAIN ANALYZE, which is consistent with its stated purpose of performance optimization.
[EXTERNAL_DOWNLOADS]: It provides links to well-known technical resources, official documentation, and community-accepted developer blogs (e.g., postgresql.org, hakibenita.com) for educational purposes.
[PROMPT_INJECTION]: An attack surface for indirect prompt injection exists because the skill ingests untrusted user inputs (specifically the query, table, and expression parameters defined in SKILL.md and CARD.yml) and interpolates them into command execution tools. The provided instructions lack specified boundary markers (like delimiters) or sanitization logic to mitigate the risk of malicious payloads embedded in the processed database objects.

postgres-optimization