azure-cost-management

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly requires runtime fetching of Markdown from external docs (e.g., https://learn.microsoft.com/en-us/azure/cost-management-billing/costs/cost-mgt-best-practices) via the mcp_microsoftdocs tool or fetch_webpage and injects that content into the agent context to drive prompts, which directly controls agent instructions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about Azure billing and cost-management actions and lists programmatic APIs and templates that can change billing state or initiate purchases. It includes items such as "Create and manage Azure Cost Management budgets" (and "Define Cost Management budgets using Bicep" / "Create Cost Management budgets with ARM templates"), "Configure payment methods for MCA and MOSP bills" and "Set up Azure subscription payment by wire transfer", and multiple links for programmatically creating subscriptions ("Create Azure EA/MCA/MPA subscriptions via REST, CLI, PowerShell, and ARM", "Programmatically create MCA subscriptions across Microsoft Entra tenants") and reservation APIs (including prepay/purchase guidance). Those are specific APIs/functions that allow an agent to update budgets, configure payment methods, create subscriptions, or trigger purchases/prepayment — i.e., direct financial execution capabilities. Therefore this skill grants Direct Financial Execution Authority.