azure-messaging
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- Authentication Best Practices: The skill provides a dedicated guide (auth-best-practices.md) that correctly advises against using
DefaultAzureCredentialin production environments, instead promoting the use of managed identities and RBAC to minimize credential exposure. - Trusted Resource Usage: All external links, documentation references, and package sources point to well-known and trusted Microsoft domains such as
learn.microsoft.com,github.com/Azure, and official Azure service endpoints (servicebus.windows.net). - Diagnostic Tooling: The defined tools (
mcp_azure_mcp_eventhubs,mcp_azure_mcp_monitor, etc.) are scoped for diagnostics and troubleshooting of Azure resources, aligning with the stated purpose of the skill without requesting excessive permissions. - Data Handling: Code snippets provided for various SDKs (C#, Java, Python, JS) use standard patterns and include placeholders for sensitive information like namespaces and connection strings, ensuring that no real secrets are hardcoded in the skill itself.
- Indirect Data Ingestion: The skill utilizes tools to query diagnostic logs and documentation. While these represent surfaces for processing external data, the risk is effectively managed as the skill focuses on reading and interpreting information from trusted service logs for troubleshooting purposes.
Audit Metadata