azure-storage
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- Authentication and Credential Security: The skill provides a dedicated guide on authentication best practices, strongly recommending the use of Managed Identities and Azure RBAC over hardcoded secrets or connection strings. It correctly identifies that
DefaultAzureCredentialshould be reserved for local development and provides environment-aware code snippets for multiple languages. - External Dependencies: The documentation references standard Azure SDK packages for Python, Node.js, Java, .NET, Go, and Rust. These are official libraries from a well-known service provider and are intended for the skill's primary purpose of interacting with Azure services.
- Data Ingestion Surface: The skill includes tools for downloading and reading content from Azure Storage (e.g.,
storage_blob_get). This represents an ingestion point for external data. Users should ensure that any content retrieved from storage containers is treated as untrusted data to mitigate the risk of indirect instructions affecting agent behavior. - Administrative Commands: The skill provides Azure CLI (az) command fallbacks for storage management. These are standard administrative tools and are used appropriately within the context of managing cloud infrastructure.
Audit Metadata