The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses the powershell tool to execute Azure CLI (az) commands for scanning existing resources, validating Bicep templates, and performing deployments. These operations are within the stated scope of the skill and follow user-approved workflows.
[REMOTE_CODE_EXECUTION]: The scripts/cli.py script dynamically generates a Node.js script and executes it via subprocess.run to utilize puppeteer for converting HTML diagrams to PNG images. This is a legitimate functional requirement for the skill's visualization and export capabilities.
[EXTERNAL_DOWNLOADS]: The skill utilizes the web_fetch tool to retrieve service specifications, API versions, and model availability directly from official Microsoft documentation at learn.microsoft.com and azure.microsoft.com. These are trusted well-known sources and the findings are neutral.
[CREDENTIALS_UNSAFE]: The skill instructions explicitly forbid asking for or storing secrets in plaintext. It mandates the use of Azure Key Vault and @secure() parameters for sensitive data, which is a significant security best practice.

azure-architecture-autopilot