sap-datasphere
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill contains no detected malicious code, obfuscation, or unauthorized data access patterns. It serves as a legitimate technical resource for SAP developers.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the official
@sap/datasphere-clifrom SAP, a well-known service provider, and@mariodefe/sap-datasphere-mcp, a community-developed MCP server required for live tenant interaction. These dependencies are clearly stated and aligned with the skill's purpose. - [COMMAND_EXECUTION]: Provides access to 45 specialized MCP tools designed for administrative and modeling tasks on SAP Datasphere, including SQL query execution, user management, and metadata inspection. These operations are performed using the user's own OAuth credentials.
- [CREDENTIALS_UNSAFE]: Documentation instructs the user to configure OAuth credentials (client ID and secret) via local environment variables for the MCP server. No hardcoded credentials or secrets were found within the skill files themselves.
- [PROMPT_INJECTION]: The skill instructions contain clear guidelines for agent behavior without any attempts to bypass safety filters or override system constraints.
Audit Metadata