playbooks

home / skills / progremir / pglr / pglr

pglr skill

/SKILL.md

This skill securely queries PostgreSQL databases via pglr, lists tables, and describes schemas without exposing credentials.

npx playbooks add skill progremir/pglr --skill pglr

Review the files below or copy the command above to add this skill to your agents.

Files (1)
SKILL.md
3.0 KB
---
name: pglr
description: Secure PostgreSQL CLI for AI agents. Query databases, list tables, describe schemas without handling credentials. Use when tasks involve database queries, data exploration, or schema inspection.
license: MIT
compatibility: Requires pglr CLI installed globally (npm install -g pglr). Human must configure connection first.
metadata:
  author: progremir
  version: "1.0.0"
allowed-tools: Bash(pglr:*)
---

# pglr - PostgreSQL CLI for AI Agents

You have access to `pglr`, a secure PostgreSQL CLI. Use it to query databases without needing connection credentials.

## Prerequisites

A human must first configure a connection:
```bash
pglr connect postgres://user:pass@host/database
```

If you get "No connection configured", ask the user to run the connect command.

## Commands

### Query the database
```bash
pglr query "SELECT * FROM users WHERE active = true"
```

With parameters (prevents SQL injection):
```bash
pglr query "SELECT * FROM users WHERE id = $1" --params '[123]'
```

### List all tables
```bash
pglr tables
```

### Describe a table's structure
```bash
pglr describe users
pglr describe myschema.orders
```

### Get full schema overview
```bash
pglr schema
```

## Output Format

All commands return JSON:
```json
{
  "success": true,
  "rowCount": 5,
  "rows": [{"id": 1, "name": "Alice"}, ...],
  "executionTimeMs": 12,
  "truncated": false
}
```

On error:
```json
{
  "success": false,
  "error": "Table does not exist"
}
```

## Constraints

- **Read-only by default**: INSERT, UPDATE, DELETE, DROP are blocked
- **Row limit**: Max 1000 rows returned (use LIMIT for smaller results)
- **No credentials access**: You cannot see or modify connection details

## Write Operations

If the user explicitly requests data modification:
```bash
pglr query "INSERT INTO logs (message) VALUES ($1)" --params '["test"]' --allow-writes
```

Only use `--allow-writes` when the user explicitly asks to modify data.

## Best Practices

1. **Always check table structure first**:
   ```bash
   pglr describe users
   ```

2. **Use parameters for user input**:
   ```bash
   # Good - parameterized
   pglr query "SELECT * FROM users WHERE email = $1" --params '["[email protected]"]'

   # Bad - string interpolation (SQL injection risk)
   pglr query "SELECT * FROM users WHERE email = '[email protected]'"
   ```

3. **Limit results when exploring**:
   ```bash
   pglr query "SELECT * FROM large_table LIMIT 10"
   ```

4. **Use schema command to understand the database**:
   ```bash
   pglr schema
   ```

## Multiple Connections

If multiple databases are configured:
```bash
# List available connections
pglr connections

# Query specific connection
pglr query "SELECT 1" --connection prod
pglr tables --connection staging
```

## Example Workflow

```bash
# 1. Understand the database structure
pglr schema

# 2. Explore a specific table
pglr describe orders

# 3. Query data
pglr query "SELECT id, status, created_at FROM orders WHERE status = $1 ORDER BY created_at DESC LIMIT 20" --params '["pending"]'
```

Overview

This skill provides a secure PostgreSQL CLI tailored for AI agents to inspect and query databases without exposing connection credentials. It supports schema discovery, table listing, table description, and parameterized queries while enforcing read-only defaults and row limits. Use it to explore data structure and run safe queries during analysis tasks.

How this skill works

The CLI runs commands that return JSON-formatted results for queries, table listings, and schema inspection. It requires a human to configure the connection once; the skill cannot read or modify credentials. Queries default to read-only; write operations require an explicit flag from the user. Results include success status, row count, execution time, and optional truncation metadata.

When to use it

  • Explore database structure before building queries or data pipelines
  • List tables and inspect column definitions to design queries
  • Run parameterized SELECT queries for analysis and reporting
  • Safely query production-like databases without exposing credentials
  • Check schema or table metadata during debugging or migrations

Best practices

  • Always run schema or table description first (schema, describe <table>) to understand types and relationships
  • Use parameterized queries to prevent SQL injection (pglr query with --params)
  • Limit result size with LIMIT or rely on the 1000-row cap when sampling large tables
  • Avoid write operations unless the user explicitly requests them and then use --allow-writes
  • When multiple connections exist, specify --connection to target the correct database

Example use cases

  • Quickly list all tables with pglr tables to find a target dataset
  • Describe a table (pglr describe users) before composing a select for analytics
  • Run a parameterized query to fetch recent orders for a dashboard
  • Get a full schema overview (pglr schema) when onboarding to a new database
  • Execute a controlled insert into logs only after explicit user approval with --allow-writes

FAQ

What if no connection is configured?

Ask the user to run the connect command; a human must configure connections (pglr connect <connection-string>).

Can the skill modify database credentials?

No. The skill cannot view or modify connection credentials; it only uses configured connections.