databricks-lakebase

Pass

Audited by Gen Agent Trust Hub on May 29, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references the official vendor package @databricks/lakebase for Node.js applications and common libraries like psycopg and SQLAlchemy for Python. These are established libraries used for database connectivity.
  • [COMMAND_EXECUTION]: The skill uses the databricks CLI (databricks postgres ...) to manage database resources. This is the intended and documented way to interact with the service.
  • [CREDENTIALS_UNSAFE]: Security is handled correctly through instructions to use environment variables for connection strings and the generate-database-credential command for short-lived OAuth tokens. It explicitly warns users against committing real credentials to version control.
  • [DATA_EXFILTRATION]: No evidence of data exfiltration was found. Network operations (CLI calls, psql, and API requests) are directed at official Databricks endpoints or defined database hosts.
Audit Metadata
Risk Level
SAFE
Analyzed
May 29, 2026, 07:33 AM
Security Audit — agent-trust-hub — databricks-lakebase