Skills
skills/databricks/databricks-agent-skills/databricks-apps/Gen Agent Trust Hub

databricks-apps

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on the Databricks CLI to perform core application management tasks.
  • Evidence: Extensive use of databricks apps init, databricks apps validate, databricks apps manifest, and databricks apps deploy throughout the instructions.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates access to vendor-specific tools and libraries via standard package registries.
  • Evidence: Instructions to use npx @databricks/appkit docs to view official documentation and references to dependencies like @databricks/lakebase and @databricks/appkit-ui.
  • [SAFE]: Data retrieval mechanisms are designed to prevent SQL injection vulnerabilities.
  • Evidence: The documentation mandates the use of sql.* helper functions (e.g., sql.string, sql.number) for all query parameters and discourages using tRPC for direct SQL retrieval.
  • [SAFE]: The skill provides explicit guidance on securing sensitive configuration data.
  • Evidence: Users are instructed to manage database connection details via environment variables and are cautioned to add .env files to .gitignore to prevent accidental credential leakage.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 12:05 AM