azure-rbac
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- Documentation-Based Guidance: The skill functions as a reference tool, retrieving information from trusted sources via the
azure__documentationtool to help users select appropriate roles. This is consistent with its stated purpose of providing role-selection guidance. - Least-Privilege Principle Integration: The core logic explicitly instructs the agent to find the 'minimal role definition' that matches desired permissions, which promotes security best practices by reducing unnecessary access.
- Vendor-Specific Tool Usage: The skill uses internal tools prefixed with
azure__, which are associated with the vendor's ecosystem (Microsoft), ensuring that code generation and documentation lookup remain within a controlled environment. - Indirect Prompt Injection Surface: Like any skill that processes external documentation or user requirements to generate code, there is a potential surface where external content could influence the agent's output. However, this is a standard consideration for LLM-based tools, and the skill includes no patterns of executing code directly without user oversight.
Audit Metadata