Skills
skills/claudedjale/skillset/azure-messaging-webpubsubservice-py/Gen Agent Trust Hub

azure-messaging-webpubsubservice-py

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the official azure-messaging-webpubsubservice and azure-messaging-webpubsubclient packages. These are official Microsoft Azure SDKs for real-time messaging.
  • [PROMPT_INJECTION]: The skill facilitates broadcasting messages to clients, which acts as a potential surface for indirect prompt injection if the agent transmits untrusted data to other downstream agents or systems.
  • Ingestion points: The message parameter used in send_to_all, send_to_user, send_to_group, and send_to_connection methods in SKILL.md.
  • Boundary markers: Absent; no delimiters or explicit instructions to ignore embedded commands are included in the provided code patterns.
  • Capability inventory: Network-based messaging and group management through the Azure Web PubSub service.
  • Sanitization: No validation, escaping, or sanitization of message content is shown in the SDK usage examples.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 12:34 AM