azure-compute
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [External Data Retrieval]: The skill uses
web_fetchto retrieve live documentation fromlearn.microsoft.comandcurlor PowerShell to query the Azure Retail Prices API atprices.azure.com. These operations target official, trusted Microsoft domains to ensure recommendations are based on current data. - [Command Execution]: The skill instructions include examples of command-line tools like
curlandInvoke-RestMethodto interact with the Azure Retail Prices API. These commands are used for data ingestion from a trusted vendor service and do not involve executing external scripts or binaries. - [Indirect Prompt Injection Surface]: Information is ingested from external web pages and API responses. Ingestion points:
learn.microsoft.comandprices.azure.com. Boundary markers: The skill instructs the agent to verify requirements and uses fetched data for recommendation context. Capability inventory:web_fetch,curl, andInvoke-RestMethod. Sanitization: Not explicitly defined in the instructions, but the risk is mitigated by the use of high-reputation vendor sources.
Audit Metadata