microsoft-foundry

The skill's footprint is coherent with its stated purpose: it is designed to orchestrate Microsoft Foundry resources through a structured set of sub-skills (create, deploy, invoke, troubleshoot, quota, rbac, project) and relies on official Azure Foundry tooling and documented workflows. There are no evident download-execute supply-chain patterns, unverifiable binaries, or credential harvest flows. Risks are largely centered on proper handling of credentials (service principals, tokens) and ensuring secure data flows to Azure Foundry endpoints; these are mitigated by documented pre-checks and Azure-based authentication. Overall, the skill appears BENIGN with MEDIUM risk considerations due to credential management and orchestration scope; no malicious behavior is evident.

The skill's footprint is coherent with its stated purpose: it acts as an orchestrator for Azure OpenAI model deployments with mode-based routing, project/region resolution, and pre-deployment validation. It relies on official Azure CLI interactions and guarded user confirmations, which aligns with legitimate developer tooling for deployment workflows. No evident credential harvesting, unmanaged download/executable patterns, or data exfiltration paths are described. Overall risk remains moderate due to exposure of deployment-related capabilities and multi-mode routing, but the architecture appears proportionate and trustable for its intended purpose.