appinsights-instrumentation
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- Indirect Prompt Injection Surface: The skill includes instructions to read and analyze source code within the workspace to determine the appropriate instrumentation path. This represents a surface where content in the workspace could attempt to influence the agent's instructions. Ingestion points: Workspace source code analysis (referenced in SKILL.md). Boundary markers: None identified. Capability inventory: Modifications to application source code (references/*.md), infrastructure templates (examples/appinsights.bicep), and execution of management commands (scripts/appinsights.ps1). Sanitization: None identified.
- External Package Management: The skill facilitates the installation of telemetry SDKs using standard package managers. The referenced packages are established libraries used for application monitoring and telemetry collection.
- Administrative Command Execution: The provided scripts utilize standard command-line tools to manage resources and set configuration values. These actions are documented as part of the setup process for application monitoring.
- Service Reference: The skill includes a reference link to a management portal for monitoring settings. This is a standard link to the service's configuration interface.
Audit Metadata