azure-enterprise-infra-planner
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [Infrastructure as Code Generation]: The skill generates Bicep and Terraform files based on user requirements and verified Azure resource schemas. This is a standard practice for cloud automation and includes guidance on using secure decorators for sensitive inputs.
- [Tool Integration]: It utilizes standard, well-known CLI tools including the Azure CLI and Terraform. These tools are used for validation and deployment, following a strict approval workflow.
- [Trusted Documentation Sourcing]: The skill fetches architectural guidance and naming rules directly from official Microsoft Learn documentation. This ensures that the planning phase is based on authoritative and up-to-date service information.
- [Security Best Practices]: The workflow incorporates a mandatory Well-Architected Framework checklist, specifically addressing identity management, secret protection, and network security.
- [Controlled Execution Environment]: Deployment actions are gated by a status lifecycle and require explicit user confirmation before executing any destructive operations, reducing the risk of accidental or unauthorized changes.
Audit Metadata