dv-overview
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- Environment Verification Controls: The skill mandates a safety check requiring explicit user confirmation before any modifications are made to a target environment. This prevent accidental changes to production or sensitive environments by verifying the active connection with
pac org who. - Secure Authentication Practices: It strictly prohibits hardcoding tokens or credentials and forbids implementing custom authentication flows. Instead, it enforces the use of documented authentication patterns via the PAC CLI and established Azure Identity libraries.
- Execution Environment Restrictions: By enforcing a Python-only rule and preventing the use of external Node.js tooling, the skill reduces the attack surface and ensures that all operations occur within a predictable and controlled execution environment.
- Automated Workspace Validation: The skill includes automated checks for workspace initialization files (
.env,scripts/auth.py). This ensures that necessary security configurations and authentication scripts are present before any core tasks are executed.
Audit Metadata