azure-eventhub-py
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation references standard installation commands for official Microsoft Azure SDK packages (
azure-eventhub,azure-identity, andazure-eventhub-checkpointstoreblob-aio) from the Python Package Index (PyPI). - [COMMAND_EXECUTION]: The skill includes a utility script (
scripts/setup_consumer.py) designed to interact with Azure Event Hubs. It performs legitimate operations such as retrieving partition metadata and sending/receiving event data using the official SDK. - [DATA_EXFILTRATION]: The code communicates with Azure service endpoints (
servicebus.windows.netandblob.core.windows.net). These are well-known cloud service domains and are the necessary targets for the skill's intended functionality. - [PROMPT_INJECTION]: The event consumer implementation in
scripts/setup_consumer.pyreads and prints event bodies from external sources. While this is an ingestion point for untrusted data, the script treats the data as strings for display purposes and does not pass them to any dangerous sinks likeeval()or system command executors.
Audit Metadata