databricks-unity-catalog
Pass
Audited by Gen Agent Trust Hub on Jul 3, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation and upgrade of the official
databricks-sdkvia standard package managers. This is a trusted library provided by the vendor for workspace interaction. - [COMMAND_EXECUTION]: The documentation includes numerous examples of the
databricksunified CLI (version 1.0.0+) for managing Unity Catalog securables. These commands are standard administrative operations for the Databricks platform. - [DATA_EXFILTRATION]: The skill provides guidance on using
databricks fsand SQLCOPY INTOcommands to transfer files between local environments, Unity Catalog Volumes, and cloud storage providers. These operations are core to the platform's data management capabilities. - [PROMPT_INJECTION]: The skill's functionality for reading and profiling data from Unity Catalog tables and volumes introduces a surface for indirect prompt injection if the processed data is not trusted. The skill mitigates this by focusing on robust governance and access control mechanisms.
- [CREDENTIALS_UNSAFE]: Templates for creating storage credentials and external locations are included. These templates correctly utilize placeholders and advocate for using platform-native identity integrations (e.g., AWS IAM Roles and Azure Managed Identities) rather than hardcoded secrets.
Audit Metadata