writing-bicep-templates
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively provides Bicep infrastructure-as-code templates and coding standards for Azure resources.
- [SAFE]: It promotes secure-by-default configurations, such as system-assigned managed identities and enforcing HTTPS-only ingress for Azure Container Apps.
- [SAFE]: Secret management follows best practices by using the listCredentials() function within templates to retrieve credentials dynamically from Azure resources rather than hardcoding them.
- [SAFE]: All command execution is limited to standard Azure CLI validation tools (az bicep build and az deployment group what-if) used for template verification without any external script downloads or risky parameters.
Audit Metadata