azure-validate
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [Infrastructure Validation]: The skill utilizes standard validation tools to check infrastructure-as-code templates for errors. This includes building Bicep files and performing Terraform plan previews to identify potential issues before actual deployment.
- [Human-in-the-Loop Requirements]: It implements a mandatory confirmation rule for any actions classified as 'destructive', such as deleting resource groups or overwriting configuration files. This ensures that high-risk operations are never performed without explicit user consent.
- [RBAC and Policy Compliance]: Features extensive guidance on verifying Role-Based Access Control (RBAC) assignments and Azure Policies. This promotes the principle of least privilege and ensures the deployment adheres to organizational compliance standards.
- [Build Context Management]: Performs checks on the local environment, such as verifying the existence of lockfiles in containerized projects, to minimize the risk of deployment-time failures due to missing dependencies.
- [Secure Workflow Enforcement]: Establishes a clear chain of prerequisites (Prepare -> Validate -> Deploy), ensuring that infrastructure changes are properly planned and reviewed before execution.
Audit Metadata