Skills
skills/microsoft/agent-skills/azure-cosmos-py/Gen Agent Trust Hub

azure-cosmos-py

Pass

Audited by Gen Agent Trust Hub on Feb 13, 2026

Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis

================================================================================

✅ VERDICT: SAFE

This skill is deemed SAFE. It provides documentation and a Python script for managing Azure Cosmos DB containers. All external dependencies are from official Microsoft repositories, which are considered trusted sources. The skill adheres to secure coding practices, such as using environment variables for credentials and avoiding hardcoded secrets. No malicious patterns for prompt injection, data exfiltration, privilege escalation, or persistence were detected.

Total Findings: 2

🔵 LOW Findings: • Trusted External Dependency

  • SKILL.md:10: pip install azure-cosmos azure-identity • Trusted External Dependency
  • scripts/setup_cosmos_container.py:19: from azure.identity import DefaultAzureCredential • Trusted External Dependency
  • scripts/setup_cosmos_container.py:20: from azure.cosmos import CosmosClient, PartitionKey

ℹ️ TRUSTED SOURCE References: • https://github.com/Azure/azure-sdk-for-python

  • references/acceptance-criteria.md:4: The skill references the official Azure SDK for Python repository, which is a trusted source. The pip install commands and import statements in the skill's code and documentation refer to packages from this trusted organization (microsoft). This is noted as a low-risk external download.

================================================================================

Audit Metadata
Risk Level
LOW
Analyzed
Feb 13, 2026, 10:25 AM