azure-rbac
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [Functional Purpose]: The skill assists in identifying Azure RBAC roles and generating CLI commands or Bicep code for role assignments. It utilizes internal Azure documentation and generation tools to provide accurate guidance.
- [Least Privilege Guidance]: The instructions emphasize finding the minimal role definition and recommend specific roles like 'User Access Administrator' for least-privilege assignments, which is a security best practice.
- [Indirect Prompt Injection Surface]: The skill processes user-defined permission requirements to generate code. As with any skill that generates executable scripts or infrastructure-as-code (Bicep/CLI), the resulting output should be reviewed by a human before being applied to a production environment.
Audit Metadata