azure-advisor-report
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill demonstrates high security awareness by providing a 'references/report-guardrails.md' file that mandates the removal of internal tool names, links, and technical jargon before presenting reports to customers.- [COMMAND_EXECUTION]: The skill uses Azure CLI (
az) to fetch recommendations and cost data, and a local Python script (generate_pptx.py) for report generation. These commands are specific to the skill's primary purpose and do not involve arbitrary or obfuscated shell execution.- [EXTERNAL_DOWNLOADS]: The skill interacts with official Azure API endpoints (management.azure.com) and provides links to the Azure Portal. These are well-known, trusted services necessary for the skill's functionality.- [SAFE]: The provided Python script uses standard libraries (pptx,argparse,sys) to handle data formatting and file creation without any dynamic code execution or suspicious network requests.
Audit Metadata