trino-security-and-governance
CommunityHarden Trino with governance, auth, and audit.
Authorivanshamaev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps you secure a Trino cluster and enforce data governance so that only the right users can access the right data with the required protections and traceability.
Core Features & Use Cases
- Transport and internal security (TLS/HTTPS + shared secret): Secures client-coordinator traffic and coordinator-worker internal communication.
- Enterprise authentication (LDAP/OAuth2/JWT + dev password-file option): Integrates identity providers and supports service accounts or development setups.
- Fine-grained authorization (file ACL + query controls + impersonation): Applies catalog/schema/table/column rules including column masking and row filtering.
- Policy-as-code authorization (OPA integration): Enables dynamic allow/deny decisions based on actions and identity context.
- Operational compliance (audit logging via event listener): Produces structured audit records for query-level accountability.
Quick Start
Configure Trino to use TLS/HTTPS, enable OAuth2 authentication, and apply file-based rules.json to enforce column masking and row-level filtering for analyst access to gold schemas.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: trino-security-and-governance Download link: https://github.com/ivanshamaev/de-agent-skills/archive/main.zip#trino-security-and-governance Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.