White Paper: Just-in-Time Database Access Best Practices

Risk Center

This feature is available in Enterprise Plan.

In Settings > Risk Center, you can define different risk levels for each operation types (DML, DDL, Create Database, Request Query, Request Export) with custom rules.

Once an operation matches the risk conditions, it will be assigned to the corresponding risk level you've defined. If an operation matches more than one risk levels, the highest level will be used.

Usage

Custom Approval

You can configure different custom approval flows for each operation types and risk levels.

ddl-dml

request-query

SQL Review

SQL review returns the associated risk level for the checked SQL statement. Bytebase GitHub action can also surface the risk level under a PR.

sql-review

Configuration

Click Add rule to create a new risk rule.

General

Name the rule so that you may know what it cares about. Select the operation type of rule. The Risk can be defined as High, Moderate or Low.

basic-info

Condition

Configure the condition of the rule. You may use a combination of conditions and condition groups.

  • Condition: An expression with Factor, Operator and Value(s). For example, the condition "Environment ID == prod" will match issues executed in the "prod" environment.
  • Condition group: A collection of conditions connected by operators "And" and "Or".

condition

Templates

A template is a system preset example of useful conditions that might be frequently used.

Click View to view the detailed condition template. And click Load to load the template into your rule.

templates

Edit this page on GitHub