fabric-cli
Pass
Audited by Gen Agent Trust Hub on May 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Several Python utility scripts in the scripts/ folder (e.g., query_sql_endpoint.py, query_lakehouse_duckdb.py, download_workspace.py) correctly use the subprocess module to invoke system binaries such as fab, sqlcmd, and duckdb. These calls are necessary for the skill's functionality and are implemented safely using list-based arguments to prevent command injection.
- [EXTERNAL_DOWNLOADS]: Skill documentation directs users to install necessary dependencies, such as the Microsoft Fabric CLI (ms-fabric-cli) and the nb-fabric CLI, using established package managers (uv, winget, cargo). All referenced external resources point to official Microsoft documentation or the author's own public GitHub repositories.
- [DATA_EXFILTRATION]: Network activity is restricted to authorized Microsoft Fabric and Power BI service endpoints (e.g., api.fabric.microsoft.com, api.powerbi.com). The skill implements secure authentication patterns, such as using DefaultAzureCredential and reusing local az login sessions, which mitigates the risk of credential exposure and ensures data is handled within the user's authorized environment.
- [SAFE]: A thorough review of the skill's instructions, metadata, and scripts revealed no indicators of malicious intent, prompt injection attempts, persistence mechanisms, or unauthorized data access. The design is transparent and aligns perfectly with its stated purpose of assisting with Fabric CLI operations.
Audit Metadata