azure-aigateway
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches configuration files from trusted official sources.
- Evidence:
SKILL.mdcontains patterns to import API specifications directly from the official Azure REST API specifications repository on GitHub. - [COMMAND_EXECUTION]: The skill uses the Azure CLI for cloud resource configuration.
- Evidence: Standard
azcommands are provided for resource group creation, Bicep deployment, and APIM management. - [PROMPT_INJECTION]: The skill processes external OpenAPI specifications, which is a potential surface for indirect prompt injection.
- Ingestion points: Pattern 9 in
SKILL.mdallows importing APIs from remote URLs. - Boundary markers: Not explicitly defined in the provided patterns.
- Capability inventory: Azure resource management via CLI.
- Sanitization: Managed by the Azure API Management platform during the import process.
- Note: This describes the inherent attack surface of API ingestion tools; no malicious patterns were detected.
Audit Metadata