All Products
Search

This Product

    Data Management:Risk audit report

    Document Center

    Data Management:Risk audit report

    Last Updated:Aug 14, 2025

    Risk reports in Data Management (DMS) help you collect and assess various risks related to your database operations. The reports provide optimization suggestions to improve the security and stability of your databases.

    What is a risk audit report

    A risk audit report provides a risk analysis and diagnosis for an instance or a specific database within an instance. The report is for reference only and does not affect the database instance.

    The following risk assessment items are supported:

    Risk assessment item

    Description

    Supported database engines

    SQL review

    Assesses whether all SQL statements initiated for the instance in the DMS platform comply with development standards. By default, this includes statements from the last week submitted through SQL Console or tickets, such as Normal Data Modify or Lock-free Change.

    Example: An UPDATE statement without a WHERE clause causes a full table update.

    Note

    This assessment item depends on SQL review optimization suggestions. For information about how to configure SQL standards, see Configure SQL review optimization suggestions.

    Self-managed MySQL, RDS for MySQL, PolarDB for MySQL, AnalyticDB for MySQL, and PolarDB Distributed Edition.

    Metadata

    Assesses risks in the table schemas of all databases in the instance.

    Example: An auto-increment primary key of the integer type is at risk of running out of available space.

    Note

    This assessment item depends on SQL review optimization suggestions. For information about how to configure SQL standards, see Configure SQL review optimization suggestions.

    Self-managed MySQL, RDS for MySQL, PolarDB for MySQL, AnalyticDB for MySQL, and PolarDB Distributed Edition.

    Sensitive data

    Assesses whether fields in the instance contain sensitive data.

    Example: Sensitive fields such as phone numbers, ID card numbers, or passwords can lead to data breaches.

    • MySQL series

      Self-managed MySQL, RDS for MySQL, PolarDB for MySQL, AnalyticDB for MySQL, and PolarDB Distributed Edition.

    • SQL Server series

      Self-managed SQL Server, RDS for SQL Server.

    • PostgreSQL series

      Self-managed PostgreSQL, PolarDB for PostgreSQL.

    • MaxCompute

    Feature limitations

    • Your DMS account must have one of the following roles: administrator, security administrator, DBA, or regular user (instance owner or database owner).

    • Each instance can retain a limited number of recent risk reports. The number of reports depends on the control mode:

      • Flexible Management: 3 reports (Details are not available for viewing.)

      • Stable Change: 20 reports

      • Security Collaboration: 50 reports

    Procedure

    1. Log on to the DMS console V5.0.

    2. In the instance list in the navigation pane on the left, right-click the target instance, and choose Audit > Risk Audit.

    3. Click Real-time Diagnosis.

    4. In the Real-time Diagnosis dialog box, select the functional modules to diagnose and click Diagnose Now. All modules are selected by default.

      The diagnosis is complete when the Status changes to Completed.

    5. After the diagnosis is complete, click Details next to the report ID.

      The Report Details page appears. On this page, click the blue number next to a risk level to view its details.