azure-search-documents-ts
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- Official SDK Usage: The skill utilizes official Microsoft packages (@azure/search-documents, @azure/identity) for interacting with Azure services, which is the expected and secure method for these operations.
- Credential Management Best Practices: The documentation explicitly discourages hardcoding API keys and instead promotes the use of
DefaultAzureCredentialfor secure, identity-based authentication. - Network Communication: The skill performs network requests to established Azure Search endpoints (
search.windows.net). This is a well-known service domain and is necessary for the skill's primary functionality. - Data Handling Considerations: As a search skill, it processes external data from search indexes and user-provided queries. It employs security-conscious patterns like the
odatahelper to mitigate injection risks in search filters. - Input Ingestion Surface: The skill ingests data from search results (e.g., in
hybridSearchandsemanticSearch). While this represents a standard indirect prompt injection surface for retrieval systems, the skill follows typical integration patterns and documentation standards.
Audit Metadata