azure-cost
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- Integration with Official Azure APIs: The skill interacts directly with official Azure Cost Management and Forecast APIs at
management.azure.com. These are standard endpoints for Azure administration. - Secure Authentication Guidance: It includes detailed documentation on authentication best practices, specifically recommending the use of Managed Identities for production environments and Azure RBAC for access control.
- Automated Resource Discovery: The skill utilizes Azure Resource Graph (KQL) to programmatically identify underutilized or orphaned resources, such as unattached disks and network interfaces, which is a standard practice for cost optimization.
- Standard Tooling and Extensions: It recommends the use of official Azure CLI extensions and the Azure Quick Review (azqr) governance tool. These tools are commonly used within the Azure ecosystem for compliance and cost analysis.
- Telemetry and Client Identification: All requests to the Cost Management API include a specialized header (
ClientType: GitHubCopilotForAzure) to identify the source of the request, which is a standard practice for telemetry and supportability in specialized management tools.
Audit Metadata