CtrlK
BlogDocsLog inGet started
Tessl Logo

surrealdb-expert

Expert SurrealDB developer specializing in multi-model database design, graph relations, document storage, SurrealQL queries, row-level security, and real-time subscriptions. Use when building SurrealDB applications, designing graph schemas, implementing secure data access patterns, or optimizing query performance.

76

Quality

77%

Does it follow best practices?

Impact

Pending

No eval scenarios have been run

SecuritybySnyk

Risky

Do not use without reviewing

Optimize this skill with Tessl

npx tessl skill review --optimize ./skills/surrealdb-expert/SKILL.md
SKILL.md
Quality
Evals
Security

Security

1 high severity finding. You should review these findings carefully before considering using this skill.

High

W007: Insecure credential handling detected in skill instructions

What this means

The skill handles credentials insecurely by requiring the agent to include secret values verbatim in its generated output. This exposes credentials in the agent’s context and conversation history, creating a risk of data exfiltration.

Why it was flagged

Insecure credential handling detected (high risk: 0.90). The prompt includes numerous hard-coded plaintext credentials and signin examples (e.g., await db.signin({"user":"root","pass":"root"}), DEFINE USER ... PASSWORD 'secure_password', pool.initialize({"user":"admin","pass":"secure"})), which encourage embedding secret values verbatim in generated code or commands.

Report incorrect finding
Repository
martinholovsky/claude-skills-generator
Commit

1086ef2

Audited
Security analysis
Snyk

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill