azure-cloud-adoption-framework

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill primarily serves as a navigation and retrieval tool for official Azure documentation.
  • [EXTERNAL_DOWNLOADS]: Fetches documentation content from official Microsoft Learn domains (learn.microsoft.com) at runtime. This is consistent with the skill's primary function and targets a well-known, trusted service.
  • [EXTERNAL_DOWNLOADS]: Recommends the use of an official Microsoft Model Context Protocol (MCP) tool hosted on the author's GitHub repository (MicrosoftDocs/mcp).
  • [INDIRECT_PROMPT_INJECTION]: The skill ingests external data from documentation URLs.
  • Ingestion points: External URLs fetched via microsoft_docs_fetch or fetch_webpage in SKILL.md.
  • Boundary markers: Absent; the skill relies on the integrity of the official documentation source.
  • Capability inventory: Uses read_file to access local guidance and microsoft_docs_fetch / fetch_webpage for remote content.
  • Sanitization: None specified; the skill assumes the safety of the vendor-provided content.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 07:10 PM
Security Audit — agent-trust-hub — azure-cloud-adoption-framework