azure-cost-optimization
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- Official Data Retrieval: The skill fetches current pricing and best practice guidelines from official cloud service domains to ensure recommendations are based on accurate, up-to-date information.
- Least Privilege Access: Instructions emphasize the use of read-only roles (Cost Management Reader, Monitoring Reader) for data collection, aligning with security principles of least privilege.
- Audit Trail and Transparency: Raw cost data and optimization reports are saved to a dedicated output folder, providing the user with a transparent record of the analysis and the data used to justify savings recommendations.
- Controlled Command Execution: Commands for resource discovery and metric collection use established command-line interfaces with structured parameters, minimizing the risk of unexpected behavior.
- Temporary File Management: The skill includes procedures to generate temporary query templates and subsequently remove them once the analysis is complete, maintaining a clean workspace.
- Data Handling Considerations: The skill processes external data such as resource names and tags from the cloud environment. This is a standard functional requirement for cost analysis, and the data is treated as information for report generation.
Audit Metadata