dbt
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The installation instructions and workflow scripts fetch well-known packages (dbt-core, dbt-trino) from the official Python package registry.
- [COMMAND_EXECUTION]: The deployment workflow utilizes subprocess to manage environment dependencies during the setup phase, which is a standard procedure for Treasure Data workflows.
- [CREDENTIALS_SAFE]: The configuration examples correctly demonstrate using environment variables (env_var) and secret management (secret:td.apikey) to handle sensitive API keys, avoiding hardcoded credentials.
- [SAFE]: All remote connections (e.g., api-presto.treasuredata.com) and resources (e.g., Docker images) target official vendor infrastructure.
Audit Metadata