dv-data
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [Official SDK Usage]: The skill uses the official 'PowerPlatform-Dataverse-Client' Python package for all data operations, ensuring compatibility and security within the Microsoft Dataverse ecosystem.
- [Destructive Operation Guards]: The instructions mandate a prose preview and explicit user confirmation before performing any create, update, delete, or bulk import actions, which prevents accidental data loss.
- [Secure Credential Management]: Authentication is handled through a separate 'auth.py' module using environment variables and standard OAuth flows (ClientSecretCredential or DeviceCodeCredential), avoiding hardcoded secrets in the skill itself.
- [Data Ingestion Surface]: The skill facilitates importing data from external CSV files and database sources. While this is a primary function, it is worth noting as a potential surface where external content is processed; however, the use of structured SDK methods and type-safe record creation effectively manages this risk.
Audit Metadata