databricks-lakebase
Pass
Audited by Gen Agent Trust Hub on May 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the official vendor package
@databricks/lakebasefor Node.js applications and common libraries likepsycopgandSQLAlchemyfor Python. These are established libraries used for database connectivity. - [COMMAND_EXECUTION]: The skill uses the
databricksCLI (databricks postgres ...) to manage database resources. This is the intended and documented way to interact with the service. - [CREDENTIALS_UNSAFE]: Security is handled correctly through instructions to use environment variables for connection strings and the
generate-database-credentialcommand for short-lived OAuth tokens. It explicitly warns users against committing real credentials to version control. - [DATA_EXFILTRATION]: No evidence of data exfiltration was found. Network operations (CLI calls,
psql, and API requests) are directed at official Databricks endpoints or defined database hosts.
Audit Metadata