Skills
skills/data-goblin/power-bi-agentic-development/c-sharp-scripting/Gen Agent Trust Hub

c-sharp-scripting

Pass

Audited by Gen Agent Trust Hub on Apr 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides numerous scripts that execute DAX queries and TMSL (Tabular Model Scripting Language) commands against connected Power BI semantic models using the EvaluateDax and ExecuteCommand APIs.
  • [EXTERNAL_DOWNLOADS]: The script examples/tables/format-power-query.csx makes a network request to an external API (m-formatter.azurewebsites.net) to format Power Query (M) expressions. This is a well-known community service for Power BI developers.
  • [DATA_EXFILTRATION]: The formatting script mentioned above sends M expression code from the local model to an external service. Model metadata is transmitted to this endpoint for the purpose of code beautification when using this specific utility script.
  • [CREDENTIALS_UNSAFE]: SKILL.md identifies environment variables required for XMLA authentication, such as AZURE_CLIENT_SECRET, as prerequisites for manual user configuration. No hardcoded secrets or sensitive credentials were detected within the skill files.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 25, 2026, 01:34 AM