Skills
skills/tfsugjp/csharptemplate/azure-static-web-apps/Gen Agent Trust Hub

azure-static-web-apps

Pass

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides instructions for running standard CLI commands such as swa init, swa start, swa login, and swa deploy. These commands are essential for the primary purpose of the skill (managing Azure Static Web Apps) and do not include any hidden or malicious shell operations.
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing the @azure/static-web-apps-cli package via npm. This is an official package from Microsoft and is handled through a well-known package registry.
  • [CREDENTIALS_UNSAFE]: The documentation correctly identifies the need for deployment tokens and client secrets for authentication but provides secure methods for handling them, such as using environment variables (SWA_CLI_DEPLOYMENT_TOKEN) and GitHub Secrets (AZURE_STATIC_WEB_APPS_API_TOKEN). No hardcoded credentials or sensitive data are included in the skill content.
  • [DATA_EXFILTRATION]: There are no patterns suggesting data exfiltration. Network operations are limited to standard Azure service endpoints required for deployment and authentication via the official CLI tool.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 30, 2026, 12:19 AM
Security Audit — agent-trust-hub — azure-static-web-apps