Data Engineering Agent Safe Operation Guide

The Data Engineering Agent can help you explore data, generate tasks, configure scheduling, publish jobs, and diagnose failures. Different operations have different impacts on the environment. Before using it, distinguish between operation types, and confirm the object, scope, and consequences before high-impact operations.

The core principle of safe use is: explore first, then generate a plan; create a draft first, then confirm execution; check impact first, then publish or re-run.

Operation Risk Levels

LevelOperation typeDoes it change the environment?Usage recommendation
Low riskView table structure, sample data, task configuration, run historyNoCan be used as the first step for the Agent to understand context
Medium riskCreate Studio draft tasks, modify task content, save schedule configurationYesConfirm the task name, directory, SQL type, and configuration content
High riskRun write SQL, publish schedules, re-run, backfill, take offline, deleteYesMust check the scope of impact and request confirmation

Read-only SQL itself does not write data, but creating Studio draft tasks modifies the task tree. Saving schedule configuration does not enter the scheduling system, but publishing a task will cause it to trigger on schedule. Confirm each of these actions separately.

Even metadata changes that do not write Lakehouse data should not be left at just "creation successful." After creating a task, composite task, DQC rule, or saving schedule configuration, continue to verify that the object was created in the correct location, correct directory, and with the correct configuration.

Read-Only Exploration

Read-only exploration is used to give the Agent context, including:

  • Viewing table structure and field types
  • Viewing a small amount of sample data
  • Viewing task directories and task configurations
  • Viewing run history and error summaries
  • Viewing available catalog, schema, and VCluster

Suggested prompt:

Read-only exploration should come before all complex operations. Do not create production tasks before understanding the table structure, field meanings, and task directories.

Creating Draft Tasks

Creating a draft task adds a new task to the Studio task tree, so it is an environment change. However, it does not automatically execute SQL or enter the scheduling system.

Before creating, confirm:

  • Task name
  • Task directory
  • Task type
  • Whether the SQL is read-only, CREATE TABLE, INSERT, or OVERWRITE
  • Whether a target table will be created
  • Whether scheduling will be configured
  • Whether it will be published

Suggested prompt:

If the target directory has not yet been created, create it in Studio first, then ask the Agent to create the task draft. Do not let the task end up in a default directory.

If a composite task or multi-node task is being created, also verify after creation:

  • Whether nodes actually exist in the DAG
  • Whether dependency edges have been established
  • Whether node content has actually been written inside the composite task

Do not treat "object created successfully" and "node dependencies configured" as the same thing.

Running Tasks

Before running a task, determine whether the task code will change data.

SQL typeImpact
SELECTTypically only reads data
CREATE TABLE AS SELECTCreates the target table
INSERT INTOAppends to the target table
INSERT OVERWRITEMay overwrite the target table or partition
DELETE / UPDATEModifies existing data

Suggested prompt:

Only ask the Agent to run the task after confirming the scope of impact.

Saving Schedules and Publishing Tasks

Saving a schedule configuration and publishing a task are two different actions.

ActionMeaningDoes it enter the scheduling system?Will it run on schedule?
Save schedule configurationSaves Cron, retry, timeout, dependency parametersNoNo
Publish taskSubmits the task to the scheduling systemYesYes
Cancel publishingRemoves the task from the scheduling systemNoNo

Before publishing, confirm:

  • Cron expression
  • VCluster
  • Retry count and interval
  • Timeout
  • Upstream/downstream dependencies
  • Whether it will run immediately
  • Next scheduled run time
  • How to pause or cancel publishing

Suggested prompt:

Creating DQC Rules Also Requires Verification

Creating DQC rules typically does not write business data, but it does modify governance metadata, so it is still an environment change.

After creation, verify:

  • Rule type, for example table_count, null check, deduplication, or custom SQL
  • Whether the check target is correct
  • Whether the threshold is correct
  • Whether the strong/weak blocking level matches expectations
  • Whether the trigger method is correct, for example manual REST trigger or schedule integration

If it is only a test rule, use an obvious test name and delete it after validation.

Re-Run, Backfill, and Delete

Re-run, backfill, and delete can all affect business data or downstream tasks — do not execute these directly.

Before executing, check:

  • Whether the root cause has been fixed
  • Whether partial data was written
  • Whether duplicate data would be created
  • Whether downstream tasks have dependencies
  • Whether publishing needs to be cancelled first
  • Whether run records or audit evidence need to be preserved

Suggested prompt:

Safe Prompt Templates

Read-only exploration

Create a draft

Pre-run confirmation

Pre-publish confirmation

Pre-re-run confirmation