Skip to main content
toolsSource-backed
Great Expectations logo

Great Expectations

Apache-2.0 GX Core Python library for data quality Expectations, validation definitions, checkpoints, Data Docs, metadata stores, and pipeline quality checks.

by Great Expectations · submitted by oktofeesh1·added 2026-06-04·
HarnessCLI
Review first review before installing

Open the source and read safety notes before installing.

Citation facts

Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.

Source URLs
https://docs.greatexpectations.io/docs/core/introduction/, https://github.com/fivetran/great_expectations, https://greatexpectations.io/
Brand
Great Expectations
Brand domain
greatexpectations.io
Brand asset source
brandfetch
Safety notes
GX Core validations can query databases, scan files, evaluate DataFrames, and compute metrics over real datasets, so production runs should use scoped credentials, tested queries, and bounded resources., Checkpoints can trigger Actions such as updating Data Docs, sending notifications, or running custom logic based on Validation Results; notification endpoints and custom Actions should be reviewed before automation., Data Docs generate static human-readable documentation from Expectations, Validation Results, and metadata, so hosted sites and generated folders need access controls before they include sensitive details., Result formats and unexpected-row retrieval can expose row-level failures or sample values; teams should tune result verbosity before publishing results to logs, tickets, chat, or docs sites., Custom Expectations, custom Actions, SQL-based custom Expectations, and orchestration integrations run team-provided code or queries and should be treated as trusted project code., GX Core compatibility depends on Python, data source, integration, and optional dependency support, so upgrades should be tested against the compatibility reference and existing validation suites.
Privacy notes
GX Core workflows can process source data, schemas, table names, file paths, SQL queries, Batch metadata, Expectation Suites, Validation Results, Checkpoints, Actions, Data Docs, and generated stores., The credentials docs say tokens and connection strings should be stored securely outside version control, using environment variables, uncommitted config files, or supported secrets managers., File Data Context Stores can persist Expectation Suites, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters in project folders or configured backends., Data Docs are static web pages generated from Expectations, Validation Results, and metadata; publishing them can disclose validation outcomes, column names, dataset structure, and failing examples., GX Core tracks analytics events by default, including feature usage, operating system, and Python version, and the docs describe disabling collection with `GX_ANALYTICS_ENABLED` or `analytics_enabled`.
Author
Great Expectations
Submitted by
oktofeesh1
Claim status
unclaimed
Last verified
2026-06-04

Decision playbook

Review trust signals before you adopt

Signals are present but mixed. Use the checklist below to confirm the source and operational safety for your environment.

Compare context
Selected

0

Current score

78

Baseline

Delta

No baseline selected

No major trust-signal divergence detected in the current selection.

Source and provenance checks

Complete

Confirm ownership and provenance before trusting install instructions.

  • Source link availableRequired

    Open the canonical repository and verify ownership.

    Done
  • Source provenance statusRequired

    Marked as source-backed.

    Done
  • Metadata reviewed

    Registry metadata indicates a reviewed listing.

    Done

Safety and privacy checks

Complete

Validate risk disclosures before installation or API wiring.

  • Safety notes presentRequired

    Review the listed safety guidance before running commands.

    Done
  • Privacy notes presentRequired

    Review data handling notes before connecting accounts or secrets.

    Done
  • Trust level risk gateRequired

    Trust level does not block evaluation.

    Done

Package and install checks

Needs review

Check package metadata and artifact integrity signals.

  • Install payload available

    Install or copy payload is available for review.

    Done
  • Package verification flag

    No package verification flag provided.

    Pending
  • Checksum metadata

    No checksum provided for downloaded artifact.

    Pending

Compare-driven decision checks

Needs review

Use compare context to validate trade-offs before adoption.

  • Compare tray has multiple entries

    Add at least one more entry to compare trust differences.

    Pending
  • Baseline comparison available

    No baseline peer selected yet.

    Pending
  • Diverging trust signals identified

    No major trust-signal divergence found.

    Pending

Setup at a glance

Copy & paste

Copy-ready — paste the snippet to get started.

Adoption plan

Balanced adoption plan

Current risk score 16/100. Use staged verification before broader rollout.

Risk 16

Pre-adoption checks

Validate source and review signals before any execution.

  • Confirm source provenanceRequired

    Source URL/provenance metadata is present.

    Done
  • Confirm metadata review state

    Listing has review metadata.

    Done
  • Verify install payload

    Install/config payload exists and can be inspected.

    Done

Security checks

Confirm safety, privacy, and package integrity signals.

  • Review safety notesRequired

    Safety notes are present.

    Done
  • Review privacy notesRequired

    Privacy notes are present.

    Done
  • Verify package integrity metadata

    No package verification/checksum metadata.

    Pending

Rollout

Adopt in controlled steps based on the selected plan.

  • Run in isolated sandbox firstRequired

    Use a constrained sandbox and observe behavior across multiple tasks.

    Pending
  • Roll out graduallyRequired

    Roll out to a small cohort before wider usage.

    Pending
  • Set monitoring and fallback

    Define rollback path and monitor errors after adoption.

    Pending

Evidence readiness

Evidence readiness matrix · balanced

Required evidence gates are covered (5/6 signals complete).

Risk 15

Source provenance

Present

Source repository/provenance is listed.

Required in this preset

Metadata review

Present

Review metadata is present.

Required in this preset

Safety notes

Present

Safety notes are present.

Required in this preset

Privacy notes

Present

Privacy notes are present.

Optional in this preset

Package integrity

Missing

Package integrity metadata is missing.

Optional in this preset

Install payload

Present

Install payload is available.

Required in this preset

Required evidence gates are covered for this preset.

Decision timeline

Decision timeline · balanced

5/6 steps complete with no blocking gaps for this preset.

Risk 14

triage

Confirm source provenanceRequired

Source/provenance metadata is available.

Done

triage

Check metadata review statusRequired

Review metadata is available.

Done

verify

Review safety notesRequired

Safety notes are available.

Done

verify

Review privacy notes

Privacy notes are available.

Done

verify

Validate package integrity metadata

Package integrity metadata is missing.

Pending

rollout

Verify install payload and commandsRequired

Install payload is available.

Done

No required blockers for this timeline preset.

Prerequisite readiness

Prerequisite readiness

5 prerequisites to line up before setup. Have accounts and credentials ready first.

0/5 ready
Account & credentials1Configuration1Network & hosting2General1

Safety & privacy surface

Safety & privacy surface

6 safety and 5 privacy notes across 8 risk areas. Review closely: credentials & tokens, permissions & scopes, network access.

8 areas
  • SafetyCredentials & tokensGX Core validations can query databases, scan files, evaluate DataFrames, and compute metrics over real datasets, so production runs should use scoped credentials, tested queries, and bounded resources.
  • SafetyNetwork accessCheckpoints can trigger Actions such as updating Data Docs, sending notifications, or running custom logic based on Validation Results; notification endpoints and custom Actions should be reviewed before automation.
  • SafetyPermissions & scopesData Docs generate static human-readable documentation from Expectations, Validation Results, and metadata, so hosted sites and generated folders need access controls before they include sensitive details.
  • SafetyData retentionResult formats and unexpected-row retrieval can expose row-level failures or sample values; teams should tune result verbosity before publishing results to logs, tickets, chat, or docs sites.
  • SafetyExecution & processesCustom Expectations, custom Actions, SQL-based custom Expectations, and orchestration integrations run team-provided code or queries and should be treated as trusted project code.
  • SafetyGeneralGX Core compatibility depends on Python, data source, integration, and optional dependency support, so upgrades should be tested against the compatibility reference and existing validation suites.
  • PrivacyLocal filesGX Core workflows can process source data, schemas, table names, file paths, SQL queries, Batch metadata, Expectation Suites, Validation Results, Checkpoints, Actions, Data Docs, and generated stores.
  • PrivacyCredentials & tokensThe credentials docs say tokens and connection strings should be stored securely outside version control, using environment variables, uncommitted config files, or supported secrets managers.
  • PrivacyLocal filesFile Data Context Stores can persist Expectation Suites, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters in project folders or configured backends.
  • PrivacyGeneralData Docs are static web pages generated from Expectations, Validation Results, and metadata; publishing them can disclose validation outcomes, column names, dataset structure, and failing examples.
  • PrivacyTelemetryGX Core tracks analytics events by default, including feature usage, operating system, and Python version, and the docs describe disabling collection with `GX_ANALYTICS_ENABLED` or `analytics_enabled`.

Disclosure: editorial

Safety notes

  • GX Core validations can query databases, scan files, evaluate DataFrames, and compute metrics over real datasets, so production runs should use scoped credentials, tested queries, and bounded resources.
  • Checkpoints can trigger Actions such as updating Data Docs, sending notifications, or running custom logic based on Validation Results; notification endpoints and custom Actions should be reviewed before automation.
  • Data Docs generate static human-readable documentation from Expectations, Validation Results, and metadata, so hosted sites and generated folders need access controls before they include sensitive details.
  • Result formats and unexpected-row retrieval can expose row-level failures or sample values; teams should tune result verbosity before publishing results to logs, tickets, chat, or docs sites.
  • Custom Expectations, custom Actions, SQL-based custom Expectations, and orchestration integrations run team-provided code or queries and should be treated as trusted project code.
  • GX Core compatibility depends on Python, data source, integration, and optional dependency support, so upgrades should be tested against the compatibility reference and existing validation suites.

Privacy notes

  • GX Core workflows can process source data, schemas, table names, file paths, SQL queries, Batch metadata, Expectation Suites, Validation Results, Checkpoints, Actions, Data Docs, and generated stores.
  • The credentials docs say tokens and connection strings should be stored securely outside version control, using environment variables, uncommitted config files, or supported secrets managers.
  • File Data Context Stores can persist Expectation Suites, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters in project folders or configured backends.
  • Data Docs are static web pages generated from Expectations, Validation Results, and metadata; publishing them can disclose validation outcomes, column names, dataset structure, and failing examples.
  • GX Core tracks analytics events by default, including feature usage, operating system, and Python version, and the docs describe disabling collection with `GX_ANALYTICS_ENABLED` or `analytics_enabled`.

Prerequisites

  • Supported Python environment for GX Core, currently Python 3.10 through 3.13, with deployment expectations that do not assume official Windows support.
  • Data Context choice, project layout, version control policy, and environment-specific configuration for development, CI, staging, and production validation workflows.
  • Data Source and Data Asset plan for SQL databases, filesystem data, pandas DataFrames, Spark DataFrames, supported cloud storage, Batch Definitions, and runtime parameters.
  • Expectation Suites, Validation Definitions, Checkpoints, Actions, Data Docs, Stores, result formats, and alerting rules designed around the data quality questions the team actually needs answered.
  • Credential strategy for database connection strings, cloud storage, Slack or Teams tokens, environment variables, uncommitted config files, and supported cloud secrets managers.

Schema details

Install type
copy
Troubleshooting
No
Source repository stats
Scope
Source repo
Tool listing metadata
Pricing
open-source
Disclosure
editorial
Application category
DeveloperApplication
Operating system
macOS, Linux
Full copyable content
## Editorial notes

Great Expectations is useful when Claude-adjacent teams need source-controlled data quality checks for pipelines, warehouses, files, notebooks, batch jobs, analytics handoffs, feature data, and evaluation datasets. It gives agents and developers a shared vocabulary for data quality Expectations, repeatable validation definitions, checkable results, generated Data Docs, and automation hooks that can fit into CI, orchestration, and data review workflows.

This entry covers the open-source GX Core library. It is distinct from dbt Core, DuckDB, Polars, Apache Airflow, and Dagster. dbt Core transforms warehouse data. DuckDB and Polars query or transform tabular data. Airflow schedules DAGs. Dagster orchestrates assets. Great Expectations focuses on declaring, running, storing, documenting, and responding to data quality validations.

## Source notes

- The official repository README describes GX Core as a package for data teams built around Expectations, which are expressive and extensible unit tests for data.
- The README says GX Core can automatically generate documentation for validation results and recommends installing `great_expectations` in a Python virtual environment.
- The README says GX Core supports Python 3.10 through 3.13 and points users to the compatibility reference for supported data sources and integrations.
- The compatibility reference lists supported GX Core integrations and data sources such as Amazon S3, Azure Blob Storage, BigQuery, Databricks SQL, Microsoft SQL Server, pandas, PostgreSQL, Snowflake, Spark, and SQLite, and says Windows is not currently supported.
- The introduction docs describe using the GX Core Python library and sample data to create a data validation workflow.
- The connect-to-data docs describe connecting to SQL databases, filesystem data, pandas DataFrames, and Spark DataFrames, then organizing data into Batches for validation.
- The run-validations docs describe validating Expectations against data, associating Batch Definitions with Expectation Suites through Validation Definitions, running Validation Definitions, and retrieving unexpected rows.
- The trigger-actions docs describe Checkpoints that automate responses to Validation Results, including alerts, Data Docs updates, and custom Actions.
- The credentials docs say credentials, tokens, and connection strings should be stored outside version control using environment variables, uncommitted config files, or supported cloud secrets managers.
- The Data Docs docs say Data Docs translate Expectations, Validation Results, and other metadata into human-readable static web pages that can be built manually or updated by Checkpoint Actions.
- The metadata-store docs say Stores persist project metadata including Expectation Suite configurations, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters.
- The analytics docs say Great Expectations tracks analytics events by default and describes disabling collection with `GX_ANALYTICS_ENABLED` or `analytics_enabled`.
- The repository is `great-expectations/great_expectations`, is Apache-2.0 licensed, and is active.

## Duplicate check

Checked current `content/tools/`, `content/mcp/`, agents, hooks, rules, skills, commands, guides, collections, open pull requests, live issue state, and repository-wide content for `Great Expectations`, `GX Core`, `great_expectations`, `great-expectations`, `github.com/great-expectations/great_expectations`, `docs.greatexpectations.io`, and `greatexpectations.io`. Existing mentions appear only inside a data pipeline engineering agent and a data engineering collection; no dedicated Great Expectations tools entry, source URL duplicate, target file, issue duplicate, or open duplicate PR was found.

## Disclosure

Editorial listing. No paid placement or affiliate link is used. GX Core is Apache-2.0 open-source software; GX Cloud, data warehouses, cloud storage, databases, notebooks, orchestrators, notification services, secrets managers, and downstream documentation hosts may have separate licenses, billing, terms, privacy obligations, and access controls.

About this resource

Editorial notes

Great Expectations is useful when Claude-adjacent teams need source-controlled data quality checks for pipelines, warehouses, files, notebooks, batch jobs, analytics handoffs, feature data, and evaluation datasets. It gives agents and developers a shared vocabulary for data quality Expectations, repeatable validation definitions, checkable results, generated Data Docs, and automation hooks that can fit into CI, orchestration, and data review workflows.

This entry covers the open-source GX Core library. It is distinct from dbt Core, DuckDB, Polars, Apache Airflow, and Dagster. dbt Core transforms warehouse data. DuckDB and Polars query or transform tabular data. Airflow schedules DAGs. Dagster orchestrates assets. Great Expectations focuses on declaring, running, storing, documenting, and responding to data quality validations.

Source notes

  • The official repository README describes GX Core as a package for data teams built around Expectations, which are expressive and extensible unit tests for data.
  • The README says GX Core can automatically generate documentation for validation results and recommends installing great_expectations in a Python virtual environment.
  • The README says GX Core supports Python 3.10 through 3.13 and points users to the compatibility reference for supported data sources and integrations.
  • The compatibility reference lists supported GX Core integrations and data sources such as Amazon S3, Azure Blob Storage, BigQuery, Databricks SQL, Microsoft SQL Server, pandas, PostgreSQL, Snowflake, Spark, and SQLite, and says Windows is not currently supported.
  • The introduction docs describe using the GX Core Python library and sample data to create a data validation workflow.
  • The connect-to-data docs describe connecting to SQL databases, filesystem data, pandas DataFrames, and Spark DataFrames, then organizing data into Batches for validation.
  • The run-validations docs describe validating Expectations against data, associating Batch Definitions with Expectation Suites through Validation Definitions, running Validation Definitions, and retrieving unexpected rows.
  • The trigger-actions docs describe Checkpoints that automate responses to Validation Results, including alerts, Data Docs updates, and custom Actions.
  • The credentials docs say credentials, tokens, and connection strings should be stored outside version control using environment variables, uncommitted config files, or supported cloud secrets managers.
  • The Data Docs docs say Data Docs translate Expectations, Validation Results, and other metadata into human-readable static web pages that can be built manually or updated by Checkpoint Actions.
  • The metadata-store docs say Stores persist project metadata including Expectation Suite configurations, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters.
  • The analytics docs say Great Expectations tracks analytics events by default and describes disabling collection with GX_ANALYTICS_ENABLED or analytics_enabled.
  • The repository is great-expectations/great_expectations, is Apache-2.0 licensed, and is active.

Duplicate check

Checked current content/tools/, content/mcp/, agents, hooks, rules, skills, commands, guides, collections, open pull requests, live issue state, and repository-wide content for Great Expectations, GX Core, great_expectations, great-expectations, github.com/great-expectations/great_expectations, docs.greatexpectations.io, and greatexpectations.io. Existing mentions appear only inside a data pipeline engineering agent and a data engineering collection; no dedicated Great Expectations tools entry, source URL duplicate, target file, issue duplicate, or open duplicate PR was found.

Disclosure

Editorial listing. No paid placement or affiliate link is used. GX Core is Apache-2.0 open-source software; GX Cloud, data warehouses, cloud storage, databases, notebooks, orchestrators, notification services, secrets managers, and downstream documentation hosts may have separate licenses, billing, terms, privacy obligations, and access controls.

Source citations

Add this badge to your README

Show that Great Expectations is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.

Listed on HeyClaude
[![Listed on HeyClaude](https://heyclau.de/badge/tools/great-expectations.svg)](https://heyclau.de/entry/tools/great-expectations)

How it compares

Great Expectations side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.

Field

Apache-2.0 GX Core Python library for data quality Expectations, validation definitions, checkpoints, Data Docs, metadata stores, and pipeline quality checks.

Open dossier

Apache-2.0 dbt engine for transforming warehouse data with SQL models, Jinja, YAML configs, tests, documentation, lineage, metadata, and build artifacts.

Open dossier

MIT-licensed embedded analytical SQL database for local OLAP workloads, data files, notebooks, Python and R clients, extensions, and single-file analytics workflows.

Open dossier

Apache-2.0 Python workflow orchestration framework for resilient data pipelines with flows, tasks, deployments, schedules, retries, caching, workers, work pools, and observability.

Open dossier
Next steps
Trust
Review statusReviewedMaintainer reviewedReviewedMaintainer reviewedReviewedMaintainer reviewedReviewedMaintainer reviewed
Package trustPackage not verifiedPackage not verifiedPackage not verifiedPackage not verified
Source provenanceSource-backedSource-backedSource-backedSource-backed
Submitteroktofeesh1oktofeesh1oktofeesh1oktofeesh1
Install riskReview firstReview firstReview firstReview first
Notes Safety ✓ Privacy ✓ Safety ✓ Privacy ✓ Safety ✓ Privacy ✓ Safety ✓ Privacy ✓
BrandGreat Expectations logoGreat Expectationsdbt Core logodbt CoreDuckDB logoDuckDBPrefect logoPrefect
Categorytoolstoolstoolstools
SourceSource-backedSource-backedSource-backedSource-backed
AuthorGreat Expectationsdbt LabsDuckDB FoundationPrefect
Added2026-06-042026-06-042026-06-042026-06-04
Platforms
Harness
Source repo
Safety notesGX Core validations can query databases, scan files, evaluate DataFrames, and compute metrics over real datasets, so production runs should use scoped credentials, tested queries, and bounded resources. Checkpoints can trigger Actions such as updating Data Docs, sending notifications, or running custom logic based on Validation Results; notification endpoints and custom Actions should be reviewed before automation. Data Docs generate static human-readable documentation from Expectations, Validation Results, and metadata, so hosted sites and generated folders need access controls before they include sensitive details. Result formats and unexpected-row retrieval can expose row-level failures or sample values; teams should tune result verbosity before publishing results to logs, tickets, chat, or docs sites. Custom Expectations, custom Actions, SQL-based custom Expectations, and orchestration integrations run team-provided code or queries and should be treated as trusted project code. GX Core compatibility depends on Python, data source, integration, and optional dependency support, so upgrades should be tested against the compatibility reference and existing validation suites.dbt runs transformation SQL against a data platform and can create, replace, or mutate warehouse objects, so development and production targets should be separated and permissioned carefully. The current `dbt-labs/dbt-core` README warns that `main` hosts dbt Core v2.0 alpha, that behavior, APIs, and on-disk formats may change, and that dbt Core v1 development has moved to `1.latest`. Version, adapter, package, and artifact compatibility should be pinned and tested before upgrading shared projects or production jobs. Model tests, contracts, lineage, and documentation improve confidence, but they do not replace data review, access controls, warehouse governance, freshness checks, or incident response. Threads, full refreshes, incremental logic, and CI jobs can consume warehouse budget or lock shared resources; teams should set concurrency, timeout, and rollback expectations before broad automation. Profile files and environment variables can contain sensitive warehouse credentials, so `profiles.yml` should stay out of git, logs, generated docs, screenshots, and shared support artifacts.DuckDB SQL should be treated like executable code because queries can read and write files, access network resources through extensions, load extensions, consume system resources, and mutate attached databases. Applications that accept user-controlled SQL, file paths, table names, filter expressions, or data-source settings need sandboxing and allowlists rather than passing those values directly into DuckDB operations. Extensions run with the same privileges as the DuckDB process, and community extensions should only be installed from trusted sources after reviewing their maintenance and distribution path. Statements such as `ATTACH`, `COPY`, `EXPORT DATABASE`, `CREATE SECRET`, `INSERT`, `UPDATE`, and `DELETE` can change local files, databases, or connected services when permissions allow it. Analytical queries can use substantial CPU, memory, temporary disk, and object-store bandwidth, so shared automations should configure memory, thread, timeout, temp-directory, and retry expectations. Persistent database files and write-ahead logs need backups, file permissions, and recovery procedures before DuckDB is used for durable or production-adjacent analytical state.Prefect flows and tasks run arbitrary Python code and can query databases, mutate files, call APIs, launch subprocesses, provision infrastructure, and trigger downstream jobs, so workflows should be treated as trusted production code. Retries, schedules, event triggers, deployment runs, backfills, and automations can repeat side effects unless tasks are idempotent and external writes are guarded. Work pools and workers can start subprocesses, containers, Kubernetes jobs, or cloud jobs; base job templates, queue limits, worker permissions, and infrastructure credentials should be scoped tightly. Flow and task timeouts help prevent unintentional long-running work, but teams still need resource limits, cancellation behavior, and cleanup policies for jobs that touch external systems. Blocks can store credentials and typed configuration for external services; SecretStr fields are encrypted and hidden by default in the UI, but credentials still need rotation, least privilege, and environment separation. Logging can capture custom logs, print statements, subprocess output, thread output, task parameters, and exception details; secrets and sensitive rows should not be printed or attached to artifacts. Self-hosted Prefect servers should use authentication, reverse proxy controls, CSRF protection, CORS policy, and secure custom-header handling before being exposed beyond a trusted network. Prefect Cloud, webhooks, automations, notifications, and external integrations can trigger or observe workflow activity and should be reviewed for permissions, rate limits, and incident response behavior.
Privacy notesGX Core workflows can process source data, schemas, table names, file paths, SQL queries, Batch metadata, Expectation Suites, Validation Results, Checkpoints, Actions, Data Docs, and generated stores. The credentials docs say tokens and connection strings should be stored securely outside version control, using environment variables, uncommitted config files, or supported secrets managers. File Data Context Stores can persist Expectation Suites, Validation Definitions, Checkpoints, Validation Results, and Suite Parameters in project folders or configured backends. Data Docs are static web pages generated from Expectations, Validation Results, and metadata; publishing them can disclose validation outcomes, column names, dataset structure, and failing examples. GX Core tracks analytics events by default, including feature usage, operating system, and Python version, and the docs describe disabling collection with `GX_ANALYTICS_ENABLED` or `analytics_enabled`.dbt workflows can process SQL models, Jinja macros, YAML configs, sources, tests, seeds, snapshots, metrics, exposures, connection profiles, warehouse relation names, logs, and generated artifacts. Command output and `logs/dbt.log` can include invocation arguments, runtime context, thread names, node metadata, warehouse relation identifiers, errors, and other debugging details. dbt artifacts are written to the project's `target/` directory by default and may include manifests, run results, catalogs, source freshness output, semantic manifests, invocation IDs, adapter types, project metadata, and selected environment metadata. The artifacts docs say environment variables prefixed with `DBT_ENV_CUSTOM_ENV_` can be included in artifact metadata, so teams should avoid placing secrets in those variables. The usage-stats docs say dbt telemetry is enabled by default and does not track credentials, raw model contents, or model names; dbt Core users can opt out by setting `send_anonymous_usage_stats` to false or `DO_NOT_TRACK=1`.DuckDB workflows can process local files, database files, notebooks, query text, table names, column names, object-store paths, data-frame contents, connection strings, secrets, extensions, and generated result sets. The files-created docs describe global files such as `~/.duckdb_history`, extension directories, and stored persistent secrets, so users should avoid typing credentials or sensitive data into ad hoc SQL history. Persistent secrets are stored under DuckDB's configured secret directory, and `duckdb_secrets()` redacts sensitive fields by default; enabling unredacted secret output is unsafe with untrusted SQL. On-disk databases can create database files, write-ahead logs, and temporary directories next to the database file or working directory, depending on connection mode and configuration. HTTP, S3, and other external-data workflows can expose object-store identifiers, paths, credentials, request metadata, and result data to the connected service and any configured logs or monitoring.Prefect workflows can process flow parameters, task inputs and outputs, cached results, state history, run metadata, logs, artifacts, events, schedules, deployments, work-pool data, block documents, and infrastructure job variables. Logs and captured print statements can disclose SQL queries, file paths, data samples, credentials, API responses, exception traces, and environment details if workflow code does not redact them. Blocks, variables, settings, profiles, and environment variables can contain cloud credentials, database credentials, Docker registry credentials, Git credentials, Slack webhooks, Snowflake credentials, and other integration secrets. Prefect server or Prefect Cloud stores orchestration metadata used for monitoring, retries, states, automations, alerts, and dashboards; teams should review retention, access controls, workspace boundaries, and export requirements. Workers running in local, Docker, Kubernetes, serverless, or managed infrastructure may expose environment variables, mounted files, network metadata, container images, and cloud identity details to the execution environment. Automations, webhooks, notifications, and integrations can forward run metadata, event payloads, failure details, and parameters to chat tools, incident systems, APIs, or downstream services.
Prerequisites
  • Supported Python environment for GX Core, currently Python 3.10 through 3.13, with deployment expectations that do not assume official Windows support.
  • Data Context choice, project layout, version control policy, and environment-specific configuration for development, CI, staging, and production validation workflows.
  • Data Source and Data Asset plan for SQL databases, filesystem data, pandas DataFrames, Spark DataFrames, supported cloud storage, Batch Definitions, and runtime parameters.
  • Expectation Suites, Validation Definitions, Checkpoints, Actions, Data Docs, Stores, result formats, and alerting rules designed around the data quality questions the team actually needs answered.
  • Choice of dbt Core version and engine path, including dbt Core v1 on the `1.latest` branch or dbt Core v2 alpha on `main` as the Rust-based Fusion foundation.
  • Supported adapter or driver for the selected data platform, warehouse credentials, target schemas, profiles configuration, and environment-specific dev, staging, and production targets.
  • dbt project structure for SQL models, Jinja, YAML configs, sources, seeds, snapshots, tests, documentation, exposures, metrics, macros, packages, and model contracts.
  • Warehouse permission model for creating, replacing, and reading relations, plus cost controls for threads, incremental models, full refreshes, CI builds, and scheduled jobs.
  • DuckDB distribution and client choice for the workflow, such as the CLI, Python, R, Java, Node.js, C or C++ APIs, Rust, ODBC, JDBC, or WebAssembly.
  • Data access plan for local DuckDB files, in-memory databases, CSV, Parquet, JSON, Arrow, pandas, R data frames, lakehouse formats, HTTP sources, S3-compatible storage, and mounted working directories.
  • Version, extension, and file-format compatibility policy for shared notebooks, CI jobs, production scripts, persisted database files, and generated analytical artifacts.
  • Resource controls for memory, threads, temporary directories, maximum temporary directory size, checkpointing, write-ahead logs, and long-running analytical queries.
  • Python 3.10 or newer with Prefect and the workflow's data, cloud, database, notification, storage, container, and infrastructure dependencies installed.
  • Workflow design for flows, tasks, subflows, parameters, states, task runners, retries, timeouts, caching, concurrency limits, background tasks, artifacts, and result persistence.
  • Deployment plan for local processes, workers, work pools, work queues, Docker, Kubernetes, cloud services, serverless infrastructure, schedules, events, automations, and manual runs.
  • Configuration and secrets plan for profiles, settings, variables, blocks, SecretStr fields, cloud credentials, database credentials, Docker or Kubernetes credentials, and environment variables.
Install
Config
Citations
ClaimUnclaimedUnclaimedUnclaimedUnclaimed
Open 4 picks in the interactive comparison tool

Related guides

Signals

Loading live community signals…

More like this, weekly

A short, calm digest of reviewed Claude resources. Unsubscribe any time.