Skills
skills/microsoft/skills/azure-keyvault-secrets-rust/Gen Agent Trust Hub

azure-keyvault-secrets-rust

Pass

Audited by Gen Agent Trust Hub on May 27, 2026

Risk Level: SAFE
Full Analysis
  • Official Dependency Usage: The skill emphasizes the use of official Azure SDK crates and provides a warning against unofficial community versions, which helps prevent supply chain attacks like typosquatting.
  • Authentication Best Practices: The guide correctly recommends using DeveloperToolsCredential for local development and ManagedIdentityCredential for production environments, adhering to the principle of least privilege and avoiding the use of long-lived service principal secrets where possible.
  • Secret Handling: While the examples demonstrate printing secret values to the console for educational purposes, the skill explicitly advises against hardcoding credentials and suggests using environment variables or managed identities instead.
  • Security-Conscious Metadata: The inclusion of specific package metadata and licensing information aligns with standard development practices for official SDK integrations.
Audit Metadata
Risk Level
SAFE
Analyzed
May 27, 2026, 10:54 AM
Security Audit — agent-trust-hub — azure-keyvault-secrets-rust