add-sharepoint
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [Secure Authentication Management]: The skill utilizes the Azure CLI (
az account get-access-token) to retrieve Microsoft Graph API tokens dynamically. This is a secure alternative to hardcoding credentials, as it relies on the user's existing authenticated session. - [Interaction with Trusted Services]: The skill interacts with official Microsoft endpoints such as
graph.microsoft.comand SharePoint tenant URLs. These interactions are standard for the skill's purpose of managing lists and sites and align with secure cloud development practices. - [Standard Tooling]: The workflow relies on the Power Platform CLI (
pac) and PowerShell (pwsh) for resource discovery and configuration. These are official Microsoft tools used for Power Apps development. - [Data Interaction Surface]: The skill retrieves information from the user's SharePoint environment, such as list names and site URLs. While this involves processing external data, the skill incorporates user confirmation steps through
AskUserQuestion, providing oversight before actions are taken based on that data. - [Least Privilege Guidance]: Documentation within the skill specifies the required Microsoft Graph permissions (
Sites.Manage.All,Sites.Read.All), encouraging users to follow the principle of least privilege when configuring their environment.
Audit Metadata