azd-deployment
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes Azure Developer CLI (azd) hooks in
azure.yamlto execute shell commands during deployment phases (preprovision, postprovision, postdeploy). Examples provided include state management using temporary files and configuring Azure RBAC via the official Azure CLI. - [DATA_EXPOSURE]: Correctly guides users to use
azd env setfor secret management instead of hardcoding values in infrastructure parameter files. It interacts with standard environment variable locations (e.g.,.azure/<env>/.env) managed by the deployment tool. - [SAFE]: Utilizes well-known, official deployment tools (
azd,az) and infrastructure-as-code (Bicep) from a reputable cloud provider (Microsoft Azure).
Audit Metadata