The Agent Skills Directory

Administrative Tooling: The skill facilitates the configuration of Microsoft Entra Suite products through guided conversation, PowerShell automation, and gap analysis. It requires the use of official Microsoft tools and modules, such as the Microsoft Graph PowerShell SDK and the Microsoft MCP Server for Enterprise.
Authentication and Scopes: PowerShell scripts utilize Connect-MgGraph with explicit permission scopes (e.g., NetworkAccess.ReadWrite.All, Policy.ReadWrite.ConditionalAccess). These scopes are appropriate for the intended purpose of identity and network security administration.
Safety Guardrails: The skill implements robust safety constraints to prevent accidental impact on production environments. It explicitly forbids the generation of deletion commands and refuses to modify Conditional Access policies that target 'All users' or 'All cloud apps'.
Idempotency and Dry-Runs: Generated PowerShell scripts are designed to be idempotent, checking for the existence of resources before attempting creation. Furthermore, all scripts support the -WhatIf parameter, ensuring administrators can preview changes before they are applied.
Local Script Execution: The skill includes helper Python scripts (audit-logger.py, generate-gap-report.py, etc.) used for data processing and report generation. These scripts utilize standard Python libraries and do not perform network operations or execute arbitrary code from untrusted sources.
Audit and Transparency: A mandatory audit trail is maintained, logging all interactions with the tenant and all artifacts generated during a session. This ensures transparency and provides a historical record of all administrative actions.

entra-poc-advisor