azure-cost-optimization
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- Official Data Retrieval: The skill queries actual cost and utilization data through the Azure Cost Management and Azure Monitor APIs. These operations are performed using the user's existing authenticated session (e.g., via
az login), ensuring that sensitive financial data is accessed through secure, official channels. - Integration with Trusted Tools:
- It leverages Azure Quick Review (azqr), a tool within the Azure ecosystem, to automate the detection of orphaned resources like unattached disks or network interfaces.
- It uses Azure Resource Graph for high-performance querying of resource configurations, facilitating cross-subscription analysis without excessive API overhead.
- Web-Based Pricing Validation: To ensure recommendation accuracy, the skill fetches current pricing tiers from official
azure.microsoft.comdomains. This is a standard and safe operation used to calculate potential savings based on publicly available data. - Security-First Authentication Guidelines: The skill provides comprehensive guidance on moving away from hardcoded secrets. It explicitly promotes the use of Managed Identities and Azure RBAC for production workloads, aligning with Microsoft's security recommendations for cloud development.
- Local File Management and Audit Trails: Cost query results and final reports are stored locally in an
output/directory for auditing. The skill also includes specific steps to remove temporary JSON query templates once execution is complete, minimizing the footprint of sensitive data.
Audit Metadata