azure-compliance
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- Key Vault Metadata Access: The skill utilizes tools like keyvault_secret_get and keyvault_key_get to retrieve expiration information. This is used to identify expiring credentials and certificates, which is a critical part of maintaining service availability and security posture.
- Automated Remediation Patterns: The documentation includes CLI and PowerShell templates for fixing common compliance issues, such as enabling private endpoints or soft delete. These patterns provide a structured way for users to address findings identified during audits.
- Resource Data Ingestion: The skill analyzes data from Azure Quick Review (azqr) scans and Resource Graph queries. This allows the agent to provide a comprehensive overview of the environment's compliance state by aggregating information from multiple Azure services.
- Use of Official SDKs and Tools: The skill references standard Azure libraries (e.g., @azure/keyvault-secrets, azure-identity) and CLI extensions. These are official Microsoft resources intended for secure programmatic access to Azure services.
Audit Metadata