azure-compliance
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- Resource Configuration Auditing: The skill facilitates the assessment of Azure resources against best practices using the Azure Quick Review (azqr) tool and Azure Resource Graph queries. These operations are restricted to listing and describing resource metadata for compliance purposes.
- Key Vault Expiration Monitoring: The skill includes procedures to audit Key Vault keys, secrets, and certificates for expiration. While it utilizes tools capable of retrieving secret metadata, the documented workflow focus is on lifecycle management and preventing service disruptions due to expired credentials.
- Authentication Best Practices: Includes detailed guidance on using managed identities and RBAC, explicitly advising against hardcoding credentials and recommending secure production patterns.
- Remediation Guidance: Provides verified Bicep and Azure CLI templates for fixing common security findings, such as enabling private endpoints and soft delete protection.
Audit Metadata