fabric-cli
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- Standard CLI Tool Usage: The skill utilizes
npxto run thefabric-app-datautility. This is a common and expected method for executing Node.js-based developer tools within a project environment. - Resource Management Best Practices: The documentation explicitly suggests adding the generated
fabric.generated.tsfile to.gitignore. This is a positive security practice that helps prevent the accidental commit of workspace and item identifiers to public or shared repositories. - Trusted Ecosystem Integration: All external references, including the Fabric portal URLs and the
@microsoft/fabric-app-datapackage, are part of the official Microsoft service ecosystem, aligning with the skill's stated purpose. - Static Code Generation: The tool generates TypeScript files containing configuration constants. This automated generation of static data is a routine part of modern development workflows and does not involve the creation of dynamic or untrusted executable logic.
Audit Metadata