// Run PostgreSQL queries for testing, debugging, and performance analysis. Use when you need to query the database directly, run EXPLAIN ANALYZE, compare query results, or test SQL optimizations. Always uses read-only connections unless explicitly directed otherwise.
Wire an existing ecosystem into the generation system. Adds generation support to basemodel.constants.ts, creates graph and handler files, and wires them into the ecosystem discriminator, workflow config, and router. Use after add-ecosystem when you need the ecosystem to show up in the generation form. Always checks @civitai/client for ecosystem-specific types before writing the handler.
Draft a model description for the CivitaiOfficial account when mirroring a third-party model on civitai.com or civitai.red. Use when the user is publishing or rewriting a mirrored model page (e.g. Sulphur, HappyHorse, Wan, ACE-Step) and wants a structured, properly-credited description rather than a one-line stub. Produces HTML ready to paste into the Civitai rich-text editor.
Read, replace, reset, export, and import XGuard policy options on the orchestrator. Use when you need to inspect current per-label policies for text or prompt scans, ship a refined policy, restore defaults, or back up the policy registry. Read-only by default; destructive operations require an explicit `--writable` flag.
Author a prompt-enhancement system prompt for a new ecosystem and register/update it on the orchestrator's prompt-analysis service. Use when onboarding a new ecosystem (e.g. happyhorse, a new Flux variant, a new Wan video version) and the user provides the ecosystem key plus a reference link, model card, or description. Produces a guide that mirrors the structure and tone of existing ecosystem guides so the prompt-analysis tool behaves consistently.
Query and explore Civitai Orchestration workflows, jobs, and results. Use for analyzing image/video generation jobs, viewing job results, searching by workflow ID, job ID, user, or date range.
Manage Next.js dev servers across worktrees. Start, stop, and read logs from dev servers. Agents can access logs from any running session, regardless of who started it.
| name | postgres-query |
| description | Run PostgreSQL queries for testing, debugging, and performance analysis. Use when you need to query the database directly, run EXPLAIN ANALYZE, compare query results, or test SQL optimizations. Always uses read-only connections unless explicitly directed otherwise. |
Use this skill to run ad-hoc PostgreSQL queries for testing, debugging, and performance analysis.
Use the included query script:
node .claude/skills/postgres-query/query.mjs "SELECT * FROM \"User\" LIMIT 5"
| Flag | Description |
|---|---|
--explain | Run EXPLAIN ANALYZE on the query |
--writable | Use primary database instead of read replica (requires user permission) |
--data-packet | Use the DataPacket replica (DATABASE_DATA_PACKET_URL) — read-only |
--notifications | Query the notifications-db (DataPacket) — read-only via SSH bastion (see setup below) |
--timeout <s>, -t | Query timeout in seconds (default: 30) |
--file, -f | Read query from a file |
--json | Output results as JSON |
--quiet, -q | Minimal output, only results |
# Simple query
node .claude/skills/postgres-query/query.mjs "SELECT id, username FROM \"User\" LIMIT 5"
# Check query performance
node .claude/skills/postgres-query/query.mjs --explain "SELECT * FROM \"Model\" WHERE id = 1"
# Override default 30s timeout for longer queries
node .claude/skills/postgres-query/query.mjs --timeout 60 "SELECT ... (complex query)"
# Query the notifications-db
node .claude/skills/postgres-query/query.mjs --notifications "SELECT count(*) FROM \"Notification\""
# Query from file
node .claude/skills/postgres-query/query.mjs -f my-query.sql
# JSON output for processing
node .claude/skills/postgres-query/query.mjs --json "SELECT id, username FROM \"User\" LIMIT 3"
| Flag | Connection string | Use when |
|---|---|---|
| (default) | DATABASE_REPLICA_URL (falls back to DATABASE_URL) | Most queries — read-only main replica |
--writable | DATABASE_URL | Writes against primary; needs user permission |
--data-packet | DATABASE_DATA_PACKET_URL | Querying the DataPacket replica (read-only) |
--notifications | NOTIFICATION_DB_REPLICA_URL | Querying notifications-db (read-only); requires SSH tunnel |
The notifications-db lives on the DataPacket cluster. Direct network access from your laptop isn't allowed — connect via the SSH bastion.
Make sure your SSH public key has been added to the bastion. If you don't have access yet, ask zach to add your ~/.ssh/id_ed25519.pub to:
clusters/production/apps/notifications-db/secrets/bastion-ssh-keys.enc.yaml
Get the bastion host, port, and forward target from zach (or read
them out of the datapacket-talos repo: bastion deployment is at
clusters/production/apps/notifications-db/bastion.yaml, public
host/port are in clusters/production/apps/minio/nginx-reverse-proxy.yaml).
Add an SSH config entry (~/.ssh/config) so the tunnel is one command:
Host notif-bastion
HostName <bastion-host>
Port <bastion-port>
User bastion
IdentityFile ~/.ssh/id_ed25519
# Tunnel local 5433 → in-cluster ro pgbouncer pooler
LocalForward 5433 <ro-pooler-host>:5432
ServerAliveInterval 60
Add the connection string to your project .env (or .claude/skills/postgres-query/.env):
NOTIFICATION_DB_REPLICA_URL=postgresql://notifications_readonly:<password>@127.0.0.1:5433/notification_prod?sslmode=disable
Get the password from zach (stored in the bastion-pg-creds.enc.yaml
secret in the datapacket-talos repo). The same password is also
preloaded inside the bastion's .pgpass for in-pod use.
# 1. Open the SSH tunnel in one terminal (stays open)
ssh notif-bastion
# The bastion's MOTD shows the available tables and tools.
# You can run ad-hoc psql in this terminal too — `psql` is preloaded
# with .pgpass and PGHOST/PGUSER env vars.
# 2. In another terminal, run queries via the skill
node .claude/skills/postgres-query/query.mjs --notifications \
"SELECT count(*) FROM \"Notification\""
node .claude/skills/postgres-query/query.mjs --notifications --explain \
"SELECT * FROM \"UserNotification\" WHERE \"userId\" = 12345 ORDER BY \"createdAt\" DESC LIMIT 50"
Notification — canonical notificationsUserNotification — per-user fanout (largest table)PendingNotification — processing queue (often empty)The role notifications_readonly only has SELECT. Writes are also rejected at the pooler level (replica routing).
DATABASE_REPLICA_URL to prevent accidental writes--writable flag is used--notifications blocks writes client-side AND the database role/pooler reject them--writable, you MUST ask the user for permissionOnly use the --writable flag when:
IMPORTANT: Always ask the user for permission before running with --writable.
To compare two query approaches:
# Run first approach
node .claude/skills/postgres-query/query.mjs --explain "SELECT ... (approach 1)"
# Run second approach
node .claude/skills/postgres-query/query.mjs --explain "SELECT ... (approach 2)"
# Compare actual results
node .claude/skills/postgres-query/query.mjs --json "SELECT ... (approach 1)" > /tmp/q1.json
node .claude/skills/postgres-query/query.mjs --json "SELECT ... (approach 2)" > /tmp/q2.json
Run with --explain and look for:
node .claude/skills/postgres-query/query.mjs --explain "SELECT * FROM \"Account\" WHERE provider = 'discord'"