get-pipeline-logs
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill interacts with
dev.azure.com, a well-known service, using official Azure DevOps REST APIs and the Azure CLI (az). These are trusted communication channels for the intended purpose. - [SAFE]: Authentication is handled by retrieving a Bearer token from the user's active Azure CLI session via
az account get-access-token. No hardcoded secrets or credentials are present. - [SAFE]: Log files are downloaded to and processed within the local temporary directory (
$env:TEMP). This is consistent with standard log analysis workflows. - [SAFE]: The skill's primary function—downloading, expanding ZIP archives, and searching text for error patterns—is implemented using standard PowerShell cmdlets (
Invoke-RestMethod,Expand-Archive,Select-String) without any signs of obfuscation or malicious intent.
Audit Metadata