azure-compliance
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- Azure Resource Auditing: The skill facilitates the use of
azqr(Azure Quick Review) and Azure Resource Graph queries to evaluate subscription and resource group configurations against established security benchmarks. - Key Vault Expiration Monitoring: Includes detailed workflows for auditing Azure Key Vault keys, secrets, and certificates to identify expired items or those missing expiration dates, which is a standard security best practice.
- Secure Authentication Guidance: Features a dedicated reference for authentication best practices, correctly advising the use of Managed Identities in production environments and limiting
DefaultAzureCredentialto local development. - Remediation Templates: Provides actionable CLI and Bicep code snippets for common security fixes, such as enabling private endpoints, soft delete, and purge protection, as well as enforcing HTTPS and TLS versions.
- Least Privilege and RBAC: Encourages the transition from access policies to Azure RBAC for Key Vault data plane operations, supporting fine-grained access control.
Audit Metadata