Database Manager

Name: Database Manager
Author: ivangdavila

功能描述

Plan, operate, and recover relational databases with schema governance, safe migrations, backup drills, and incident response playbooks.

使用说明 (SKILL.md)

Setup

On first use, read setup.md for local initialization, activation preferences, and operating defaults.

When to Use

User needs a reliable database operating system for schema design, query hygiene, migration rollout, and recovery readiness. Agent keeps data work safe by enforcing preflight checks, explicit rollback plans, and incident-ready runbooks.

Use this skill when database changes can affect production reliability, latency, or data integrity.

Architecture

Memory lives in ~/database-manager/. See memory-template.md for the base structure.

~/database-manager/
├── memory.md                  # Durable context and operating preferences
├── inventory.md               # Systems, engines, owners, and critical datasets
├── standards.md               # Naming, indexing, and schema conventions
├── migrations.md              # Planned and executed migration records
├── backups.md                 # Backup schedule, retention, and restore drills
├── incidents.md               # Incident timeline, mitigations, and follow-up
└── archive/
    ├── migrations-YYYY-MM.md  # Closed migrations by month
    └── incidents-YYYY-MM.md   # Closed incidents by month

Quick Reference

Topic	File
Setup flow	`setup.md`
Memory template	`memory-template.md`
Inventory and ownership model	`inventory-and-governance.md`
Query operations and change windows	`query-operations.md`
Migration and release controls	`migration-and-release.md`
Backup and recovery workflows	`backup-and-recovery.md`
Incident response sequence	`incident-playbook.md`
Reusable templates	`templates.md`

Core Rules

1. Never Change Production Without a Preflight Packet

Every schema or data change must include:

intent
blast radius
rollback path
verification query set

Skipping preflight creates unbounded operational risk.

2. Separate Read Validation from Write Execution

Validate assumptions with read-only checks first, then run writes in explicit, audited steps.

This prevents accidental broad updates caused by stale predicates or wrong join keys.

3. Treat Migrations as Product Releases

Each migration requires:

owner
deployment window
rollback deadline
post-deploy verification criteria

Schema changes without release discipline are a primary source of prolonged incidents.

4. Make Index and Query Trade-offs Explicit

When changing indexes or query plans, state expected impact on:

read latency
write throughput
storage growth

Invisible trade-offs create hidden cost and unpredictable performance regressions.

5. Backup Is Not Real Until Restore Is Proven

Do not trust backup status alone. Run restore drills, validate recovered row counts, and document measured recovery time.

Unverified backups are operationally equivalent to no backups.

6. Encode Safety Gates for Destructive Operations

Before DROP, TRUNCATE, broad DELETE, or bulk UPDATE:

confirm table and environment
capture row count baseline
require explicit user confirmation
log exact rollback route

Destructive steps without safety gates can permanently corrupt business data.

7. Close Every Incident with Durable Learning

After mitigation:

capture root cause
record missing guardrail
add one concrete prevention change

Without closure rules, the same incident class repeats.

Common Traps

Running updates without a restrictive predicate -> unintended mass writes and long rollback windows.
Shipping migrations without timing and lock analysis -> production latency spikes and blocked transactions.
Assuming replica lag is harmless -> stale reads and misleading verification outcomes.
Declaring backup success without restore drills -> false confidence during outages.
Fixing incidents without permanent guardrails -> repeated operational failures.

Security & Privacy

Data that leaves your machine:

None by default.

Data that stays local:

Database operating context and records under ~/database-manager/.

This skill does NOT:

Execute destructive commands without explicit user confirmation.
Access unrelated credentials or services by default.
Store secrets in memory files.

Related Skills

Install with clawhub install \x3Cslug> if user confirms:

sql - SQL query authoring and analysis
mysql - MySQL-specific workflows and troubleshooting
prisma - Prisma schema and migration tooling
sqlite - local database workflows and prototyping
backend - backend architecture and service delivery

Feedback

If useful: clawhub star database-manager
Stay updated: clawhub sync

安全使用建议

This skill appears coherent and limited to local runbooks. Before enabling: confirm you are comfortable with the agent creating ~/database-manager/ (it will create files and set restrictive permissions if you approve); do not store DB connection strings, passwords, or private keys in these files; ensure the agent asks for explicit confirmation before executing any steps that would connect to or modify production databases (the docs require user confirmation for destructive operations); and be cautious if you install the related runtime skills (sql, mysql, prisma) — those may request credentials or binaries to actually connect to databases. If you want higher assurance, validate the skill's homepage/owner or run it in a sandboxed account/home directory first.

功能分析

Type: OpenClaw Skill Name: database-manager Version: 1.0.0 The skill bundle is designed to help an AI agent manage database operations safely, emphasizing best practices, pre-flight checks, and user confirmation for risky actions. The `setup.md` file contains shell commands (`mkdir`, `touch`, `chmod`) for local file system management, but these are confined to the skill's designated configuration directory (`~/database-manager/`) and are necessary for its operation. `SKILL.md` explicitly states that no data leaves the machine by default, no destructive commands are executed without user confirmation, and no secrets are stored in memory files, indicating a clear intent for safe and local operation. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection designed to subvert the agent for harmful purposes.

能力评估

✓ Purpose & Capability

The name/description (database operations, migrations, backups, incident playbooks) aligns with the files and runtime instructions. The only requested resource is a local config/memory path (~/database-manager/), which is appropriate for durable runbooks and checklists.

ℹ Instruction Scope

All runtime instructions are documentation-centric and scoped to local files: templates, checklists, and a setup flow that (with user consent) creates ~/database-manager/ and initializes files with restrictive permissions. One ambiguous clause: the skill may 'proceed with labeled assumptions' if context is missing — this grants the agent discretion to act on inferred context unless the agent explicitly asks the user, so the user should ensure the agent asks for confirmation before making environment-specific changes.

✓ Install Mechanism

Instruction-only skill with no install spec and no code files. No packages, downloads, or executable installs are performed by the skill itself.

✓ Credentials

The skill requests no environment variables, no credentials, and only a config path under the user's home. Files are expected to be plain text and the documentation explicitly says not to store secrets in memory files.

✓ Persistence & Privilege

The skill persists durable state only under ~/database-manager/, a path declared in metadata and the setup docs. It is not always-enabled and does not request system-wide or other skills' config changes. The skill allows autonomous invocation by default (platform default) but that is not combined with elevated privileges or broad credential access.

版本历史

v1.0.0

Initial release with schema governance rules, migration safety checks, backup recovery workflows, and on-call response templates.

元数据

Slug database-manager

版本 1.0.0

许可证 —

累计安装 14

当前安装数 14

历史版本数 1

常见问题