dbt-migration
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill executes the dbt-autofix utility using the uvx runner, which fetches code directly from the vendor's official GitHub repository (dbt-labs/dbt-autofix). It also provides instructions for updating dbt Fusion components from verified sources.
- [COMMAND_EXECUTION]: The workflow relies on standard dbt CLI operations (compile, test, run, debug) and utilizes common system utilities like git for change tracking and jq for manifest processing. It also performs routine environment cleanup such as removing the target directory.
- [DATA_EXFILTRATION]: The skill is configured to interact with the GitHub API (api.github.com) to search for and retrieve information about known issues in the dbt-fusion engine, which is a standard diagnostic behavior for the migration triage workflow.
- [PROMPT_INJECTION]: The skill documentation includes specific security guardrails that instruct the agent to treat all user SQL and YAML project files as untrusted content, ensuring that it ignores any embedded instructions or commands found within the data it processes.
Audit Metadata