azure-validate
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Standard Command Execution: The skill utilizes official command-line interfaces, including the Azure CLI (
az), Azure Developer CLI (azd), Terraform, and Docker. These tools are used to validate infrastructure templates (Bicep/Terraform), check authentication status, and verify container build readiness. These operations are essential for its role as a deployment validator. - Trusted Tool Installation: It facilitates the installation of necessary CLI components through specialized MCP tools and provides links to official installation pages (e.g., HashiCorp for Terraform). These references point to well-known, trusted sources and represent standard setup procedures.
- Project Configuration Analysis: The skill reads and analyzes local project files, such as
azure.yaml,.bicepfiles, and .NET source code (.cs). This allows it to detect common configuration errors, such as missing environment variables or incompatible region selections. While processing untrusted project data is an inherent surface for indirect instruction handling, the skill follows structured recipes to mitigate accidental misconfiguration. - Targeted Code Remediation: For specific scenarios like .NET Aspire with Azure Functions, the skill provides logic to identify and fix known secret storage issues by modifying project code. These modifications are specifically aimed at resolving runtime errors and are performed within the context of the user's deployment workflow.
Audit Metadata