databricks-unity-catalog

Pass

Audited by Gen Agent Trust Hub on Jul 3, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references the installation and upgrade of the official databricks-sdk via standard package managers. This is a trusted library provided by the vendor for workspace interaction.
  • [COMMAND_EXECUTION]: The documentation includes numerous examples of the databricks unified CLI (version 1.0.0+) for managing Unity Catalog securables. These commands are standard administrative operations for the Databricks platform.
  • [DATA_EXFILTRATION]: The skill provides guidance on using databricks fs and SQL COPY INTO commands to transfer files between local environments, Unity Catalog Volumes, and cloud storage providers. These operations are core to the platform's data management capabilities.
  • [PROMPT_INJECTION]: The skill's functionality for reading and profiling data from Unity Catalog tables and volumes introduces a surface for indirect prompt injection if the processed data is not trusted. The skill mitigates this by focusing on robust governance and access control mechanisms.
  • [CREDENTIALS_UNSAFE]: Templates for creating storage credentials and external locations are included. These templates correctly utilize placeholders and advocate for using platform-native identity integrations (e.g., AWS IAM Roles and Azure Managed Identities) rather than hardcoded secrets.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 3, 2026, 07:17 PM
Security Audit — agent-trust-hub — databricks-unity-catalog