azure-pipelines-generator
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions include a fallback mechanism to execute a local bash script for pipeline validation (validate_azure_pipelines.sh). This is part of the documented operational flow for the skill's primary purpose.
- [EXTERNAL_DOWNLOADS]: The skill escalates to official Microsoft Learn documentation and well-known technology services for task reference information, which is considered a safe and intended lookup behavior.
- [EXTERNAL_DOWNLOADS]: Generated pipeline examples include standard commands to download dependencies via package managers such as npm, pip, and go, which is required functionality for CI/CD processes.
- [PROMPT_INJECTION]: The skill processes user-defined requirements and external documentation to generate pipeline YAML, creating an indirect prompt injection surface.
- Ingestion points: User requirements provided in the prompt and external documentation retrieved during escalation.
- Boundary markers: No explicit delimiters are specified to isolate user requirements from generation instructions.
- Capability inventory: The skill generates executable Azure Pipelines code and includes instructions to invoke a local validation script.
- Sanitization: No explicit sanitization or validation of the input requirements for injection patterns is documented.
Audit Metadata