azure-compliance
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [Secure Authentication Guidance]: The skill emphasizes the use of managed identities and Azure RBAC for production environments. It explicitly warns against the use of
DefaultAzureCredentialin production, correctly identifying it as a tool for local development to minimize credential exposure risk. - [Resource Auditing Surface]: The skill interacts with Azure resource configurations and Key Vault metadata to identify compliance gaps. While this involves processing resource information, the operations are performed within the scope of an audit and security review, which is the skill's primary purpose.
- [Tool Integration]: It utilizes established MCP tools for Azure operations, such as
azqrfor compliance scans andaz graph queryfor resource analysis. These tools are used to gather diagnostic information and provide remediation recommendations based on official best practices. - [Remediation Templates]: The provided scripts for Azure CLI and Bicep are standard templates for correcting common configuration issues (e.g., enabling encryption or soft delete). These are educational resources intended to guide the user in improving their security posture.
Audit Metadata