Skills
skills/julianobarbosa/claude-code-skills/azure-devops-skill/Gen Agent Trust Hub

azure-devops-skill

Pass

Audited by Gen Agent Trust Hub on Feb 20, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Prompt Injection] (LOW): Indirect Prompt Injection Surface. The reference defines tool parameters that ingest untrusted natural language data.
  • Ingestion points: Parameters like 'description' in 'mcp__ado__repo_create_pull_request' and 'content' in 'mcp__ado__repo_create_pull_request_thread' (references/git-repos-reference.md).
  • Boundary markers: Absent; the documentation does not prescribe delimiters or instruction-bypass warnings for external data.
  • Capability inventory: Tools allow branch creation, PR management, and commenting on repositories.
  • Sanitization: Absent; no mention of escaping or validating external input before processing.
  • [Credentials Unsafe] (SAFE): The document includes Git URL patterns documenting PAT (Personal Access Token) usage placeholders but contains no hardcoded credentials or secrets.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 20, 2026, 10:21 PM