agent safety

Agent safety answer

sqlcmd sends SQL to Microsoft SQL Server and Azure SQL targets.

Credential access

Reads database passwords, connection strings, tokens, and environment credentials.

Remote mutation

Can create, alter, drop, import, and export database state.

Publish/artifact risk

Can dump or load data artifacts containing sensitive records.

Recommended control

Gate write SQL, dumps, imports, and credential-bearing connection strings.

Agent-use guidance

Allow safe metadata queries; require approval for writes, exports, and secret use.

Installation

Mit Automic Vault installieren

Automic Vault

AV herunterladen

sudo av install brew:sqlcmd

macOS

Homebrewverified · 100%

brew install sqlcmd

local Homebrew formula metadata

Linux

Nixverified · 92%

nix profile install nixpkgs#sqlcmd

nixpkgs package indexes · pkgs/by-name/sq/sqlcmd/package.nix · source: api.github.com

Windows

Chocolateyverified · 92%

choco install sqlcmd

Chocolatey community package catalog · sqlcmd · source: community.chocolatey.org

Windows Package Managerverified · 92%

winget install --id Microsoft.Sqlcmd -e

Windows Package Manager source index · Microsoft.Sqlcmd · source: cdn.winget.microsoft.com

Paketmanager-Quelle

https://formulae.brew.sh/formula/sqlcmd

Plattformhinweise

Es waren keine paketspezifischen Plattformhinweise vorhanden.

Überblick

Paketzusammenfassung

Microsoft SQL Server command-line interface

Homepage

https://github.com/microsoft/go-sqlcmd

Befehle und Aliase

sqlcmd

Protected-Tool-Abdeckung

Plain Text sqlcmd Context Passwords

sqlcmd stores modern CLI contexts in ~/.sqlcmd/sqlconfig. The upstream schema includes user password fields and documents macOS Keychain support as a TODO. Our isotope stores sqlconfig in the macOS keychain and injects it through a temporary HOME while `sqlcmd` runs.

Risk classifier

blue risk · medium confidence · tool

Why

broad file, network, media, or database tool signal

Signals

text:sql,server

Install behavior

No Homebrew post-install hook is recorded in formula metadata.
Homebrew bottle metadata is available for 6 platform targets.
Build metadata lists 1 build dependencies.

Lokaler README-Auszug

sqlcmd

sqlcmd stores modern CLI contexts in ~/.sqlcmd/sqlconfig. On macOS the upstream code documents Keychain encryption as a TODO, so password fields can remain in the user config file.

This protected-tool coverage migrates ~/.sqlcmd/sqlconfig to the keychain when it contains password fields and wraps sqlcmd so the config is recreated under a temporary home while the CLI runs.

Quelle: local coverage notes

Quelle der Abdeckung

Quellauszug

Caveats

Runtime changes to sqlconfig are not persisted back to keychain.
Direct execution of the original binary will not receive credentials.

Executables

Installierte Executables

Befehl	Art	Sichtbarkeit	Hinweis
`sqlcmd`	cli	global executable

Aktualität

Version und Aktualität

Diese Signale trennen das Alter der Seitengenerierung, Aktivität des Paketmanagers und Upstream-Release-Vergleich. Versionsrückstand wird nur gemeldet, wenn eine Evidenz-URL und vergleichbare Versionen vorhanden sind.

Seite generiert2026-06-10

Manager-Version1.10.0

Manager aktualisiert2026-04-10

lokale Datenok

Upstreamcurrent

neueste erkannte Versionv1.10.0

https://github.com/microsoft/go-sqlcmd

okNo freshness warnings were generated.

Installationsmetadaten

Paketmetadaten

Package key	brew:sqlcmd
Version	1.10.0
Package manager	Homebrew
Package manager page	https://formulae.brew.sh/formula/sqlcmd
Homepage	https://github.com/microsoft/go-sqlcmd
Repository	https://github.com/microsoft/go-sqlcmd
Upstream docs	https://github.com/microsoft/go-sqlcmd#readme
License	MIT
Source archive	https://github.com/microsoft/go-sqlcmd/archive/refs/tags/v1.10.0.tar.gz
Last updated	2026-04-10T21:11:12Z
Pulse	updated
Build dependencies	go
Bottle	available (arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-install	not defined
Service	none declared

registry facts

Source database details

Source Database	Homebrew formula API
Tap	homebrew/core
Full Name	sqlcmd
Version Scheme	0
Revision	0
Bottle Stable Root URL	https://ghcr.io/v2/homebrew/core
Deprecated	no
Disabled	no
Keg Only	no
URL Keys	stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

sqlcmd

nix profile install nixpkgs#sqlcmd

normalized package name match
Matched by: Sqlcmd

nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/sq/sqlcmd/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

Chocolatey95%

sqlcmd

choco install sqlcmd

normalized package name match
Matched by: Sqlcmd

Chocolatey community package catalog · community.chocolatey.org · Chocolatey community package catalog: sqlcmd from http://community.chocolatey.org/api/v2/Packages?$filter=IsLatestVersion&$select=Id&$top=1000&$skiptoken='11','sql2012.smo'

winget95%

Microsoft.Sqlcmd

winget install --id Microsoft.Sqlcmd -e

normalized package name match
Matched by: Sqlcmd

Windows Package Manager source index · cdn.winget.microsoft.com · Windows Package Manager source index: Microsoft.Sqlcmd from https://cdn.winget.microsoft.com/cache/source.msix

Paketgraph

Links stammen aus dem lokalen Paketbeziehungsgraph, Ergänzungen, Abhängigkeitskanten, Ecosystem-Matches und Paket-Hub-Mitgliedschaft.

Quellspur

Aus Repository-Daten generiert

Diese Seite wird von av-web aus dem privaten Paket-SQLite-Artefakt bereitgestellt, das scripts/generate-pkg-sqlite.py erstellt.

Verwendete Quellen

Geiger risk classifier
Nucleus package database
av.db category and tag curation
cross-ecosystem install command graph
curated agent safety answer
external package-manager database matches
local coverage README
package relationship graph
package version freshness
package-page enrichment
secret-handling manifest

sqlcmd installieren