migrating-dbt-project-across-platforms
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill advises against logging or displaying credentials from profiles.yml and recommends using environment variables for sensitive connection parameters.\n- [EXTERNAL_DOWNLOADS]: The skill references official dbt Fusion documentation for installation and updates. The dbtf system update command is a standard administrative feature for the vendor-provided tool.\n- [COMMAND_EXECUTION]: The skill utilizes standard command-line tools (dbtf, jq, rm) for project analysis and cache management. The rm -rf target/ command is appropriately scoped to the dbt build directory.\n- [PROMPT_INJECTION]: The skill mitigates indirect prompt injection risks by instructing the agent to treat all user-provided SQL and YAML files as untrusted and to ignore any embedded instructions or commands.\n
- Ingestion points: dbt project SQL and YAML files.\n
- Boundary markers: Instructions mandate treating external content as data and ignoring instruction-like text.\n
- Capability inventory: Executes dbtf CLI and standard shell utilities.\n
- Sanitization: Explicitly directs the agent to ignore non-data instructions in processed files.
Audit Metadata