mz-query-tracing
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: Executes local project binaries (bin/mzcompose, bin/environmentd) and standard utilities (psql, curl) to interact with the local Materialize environment and monitoring stack.
- [SAFE]: Performs network requests to localhost to fetch tracing data from the Tempo API. These operations target whitelisted domains and do not involve sensitive data exposure.
- [SAFE]: The trace_tree.py script is a safe data-processing utility that parses JSON trace files without external dependencies or dangerous execution patterns.
Audit Metadata