azure-kubernetes
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Official Tooling and Documentation: The skill integrates with official Azure CLI tools (az aks) and MCP servers. All references direct the user to verified Microsoft technical documentation, ensuring the guidance is grounded in established vendor standards.
- Sensitive Credential Management: The skill includes commands like
az aks get-credentials, which are used to retrieve Kubernetes configuration files. These files contain sensitive authentication data for cluster access, so they are handled using the standard secure mechanisms provided by the Azure CLI. - Administrative Command Execution: The workflow involves generating shell commands based on user-supplied parameters (e.g., cluster names, resource groups). This is expected behavior for an infrastructure management skill, and the skill includes guardrails to prevent the output or request of secrets like tokens or keys.
- Security Configuration Guidance: It proactively recommends security-enhancing configurations such as Microsoft Entra ID integration, Secrets Store CSI Driver, and Azure Policy, which helps users maintain a secure posture in their cloud environment.
Audit Metadata