dv-data
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- Official SDK Integration: The skill utilizes the official PowerPlatform-Dataverse-Client library. This ensures that communications with Dataverse follow Microsoft's recommended security and protocol standards.
- Credential Management Best Practices: The instructions guide the agent to use environment variables and a centralized authentication script (auth.py) for handling sensitive credentials like Client Secrets. This approach avoids hardcoding secrets and follows standard security patterns for application development.
- Data Processing Surface: The skill is designed to ingest and process external data from CSV files and DataFrames for bulk operations. This represents an attack surface for indirect prompt injection, though it is standard for data-import tools.
- Ingestion points: Processes data from CSV files and pandas DataFrames.
- Boundary markers: Not explicitly present in the instructional templates.
- Capability inventory: Full record lifecycle management (create, update, delete, upsert) using the Dataverse Client.
- Sanitization: Not explicitly shown in the example scripts; data from source files is mapped directly to Dataverse columns.
Audit Metadata