azure-advisor-report

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [SAFE]: The skill demonstrates high security awareness by providing a 'references/report-guardrails.md' file that mandates the removal of internal tool names, links, and technical jargon before presenting reports to customers.- [COMMAND_EXECUTION]: The skill uses Azure CLI (az) to fetch recommendations and cost data, and a local Python script (generate_pptx.py) for report generation. These commands are specific to the skill's primary purpose and do not involve arbitrary or obfuscated shell execution.- [EXTERNAL_DOWNLOADS]: The skill interacts with official Azure API endpoints (management.azure.com) and provides links to the Azure Portal. These are well-known, trusted services necessary for the skill's functionality.- [SAFE]: The provided Python script uses standard libraries (pptx, argparse, sys) to handle data formatting and file creation without any dynamic code execution or suspicious network requests.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 06:41 PM
Security Audit — agent-trust-hub — azure-advisor-report