kql
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [External Data Integration]: The skill documents the
external_dataoperator, which allows KQL to interface with external storage services like Azure Blob Storage. This is a standard feature of the language used for legitimate data exploration and does not represent an unauthorized exfiltration attempt. - [Management Command Documentation]: The skill provides guidance on using management commands (prefixed with
.), such as.showand.create. It correctly distinguishes these from standard query operations and provides instructions on their appropriate use within the Kusto execution environment. - [Advanced Analysis Features]: Documentation is provided for advanced features including the
pythonplugin and geospatial functions. These are standard extensibility points in Kusto designed for complex data processing and are presented here as educational reference material. - [No Suspicious Patterns]: A thorough review of the instructions and reference files found no evidence of prompt injection, obfuscation, or malicious data exfiltration patterns. The content is consistently focused on legitimate technical expertise.
Audit Metadata