azure-deploy
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill provides instructions to install the Azure Developer CLI via a shell script fetched from a Microsoft-owned domain (https://aka.ms/install-azd.sh). This is handled as a safe operation given the trusted source.
- [EXTERNAL_DOWNLOADS]: Installation scripts and cloud configuration schemas are retrieved from verified Microsoft and Azure domains.
- [COMMAND_EXECUTION]: Extensive use of deployment commands (azd up, az deployment, terraform apply) is protected by mandatory user verification steps (ask_user) for critical parameters and destructive operations.
- [PROMPT_INJECTION]: The skill implements a dependency check on .azure/plan.md and explicitly forbids the agent from bypassing validation steps or manually altering the plan status.
- [DATA_EXFILTRATION]: Network activity is confined to official Azure service endpoints for deployment and health monitoring, with no evidence of sensitive data being sent to unauthorized third-party domains.
Audit Metadata