azure-upgrade
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Azure CLI Command Execution: The skill employs standard Azure CLI (
az) commands to query, configure, and manage Azure resources. This includes operations such asaz functionapp flex-migrationandaz resource showto handle the transition between hosting plans. - Extension Management: It automatically installs the
resource-graphAzure CLI extension. This is a standard extension provided by the cloud service provider to enable complex resource querying capabilities. - Sensitive Configuration Migration: To ensure service continuity, the skill reads existing application settings and connection strings. It explicitly recommends transitioning to identity-based authentication (Managed Identity) during the upgrade process to enhance the security posture.
- Automated Resource Creation: The skill automates the creation of new Azure resources, such as the Flex Consumption Function app, using established migration tools. It maintains a clear policy of requiring user approval through
ask_userbefore executing any destructive operations like resource deletion. - Data Handling Surface: The skill ingests configuration data from the user's Azure environment to generate assessment reports. While this introduces a data processing surface, the operations are conducted within the context of the user's authenticated session using official management tools.
Audit Metadata