sql-planner

SUSPICIOUS: the skill’s purpose is coherent, but it creates a high-risk connector pattern by persisting remote DB command templates and relying on raw {sql} shell injection at runtime. Main concerns are command-injection potential and plaintext credential storage, not overt malware or deceptive supply-chain behavior.