azure-cloud-adoption-framework
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill primarily serves as a navigation and retrieval tool for official Azure documentation.
- [EXTERNAL_DOWNLOADS]: Fetches documentation content from official Microsoft Learn domains (learn.microsoft.com) at runtime. This is consistent with the skill's primary function and targets a well-known, trusted service.
- [EXTERNAL_DOWNLOADS]: Recommends the use of an official Microsoft Model Context Protocol (MCP) tool hosted on the author's GitHub repository (MicrosoftDocs/mcp).
- [INDIRECT_PROMPT_INJECTION]: The skill ingests external data from documentation URLs.
- Ingestion points: External URLs fetched via
microsoft_docs_fetchorfetch_webpageinSKILL.md. - Boundary markers: Absent; the skill relies on the integrity of the official documentation source.
- Capability inventory: Uses
read_fileto access local guidance andmicrosoft_docs_fetch/fetch_webpagefor remote content. - Sanitization: None specified; the skill assumes the safety of the vendor-provided content.
Audit Metadata