sqldw-consumption-cli
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- T-SQL Command Execution: The skill provides a framework for executing T-SQL queries against remote databases using the
sqlcmdutility. This allows the agent to interact with database endpoints, which is a core function but requires careful handling of query strings to ensure intended execution. - External API Communication: It uses the
az restcommand to retrieve connection strings and item metadata from official Microsoft Fabric APIs (api.fabric.microsoft.com). This involves making authenticated network calls to discover infrastructure details dynamically. - Local File Exporting: The skill includes templates for saving database query results to local CSV or JSON files. This capability allows data retrieved from a remote source to be written to the local filesystem for storage and further analysis.
- Database Administrative Actions: The skill documents the use of the
KILLcommand to terminate database sessions. This provides a mechanism for performance troubleshooting but grants the agent the ability to manage active database connections. - Indirect Data Processing: As the skill processes results from SQL queries, it may encounter data from untrusted sources. This creates a surface for indirect prompt injection if the database content is designed to influence the agent. The skill addresses this concern by providing best practices for output formatting and parameterized query variables.
Audit Metadata