azure-cosmos-java
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- Credential Management Considerations: The skill promotes using environment variables and the
DefaultAzureCredentialclass for database authentication. This approach helps in avoiding the risks associated with hardcoded sensitive credentials in source code. - Input Sanitization Patterns: The documentation includes examples of parameterized queries using
SqlQuerySpecandSqlParameter. It explicitly identifies string concatenation in queries as an unsafe pattern, guiding users toward methods that prevent injection-based vulnerabilities. - Data Ingestion Surface: The skill facilitates the retrieval and processing of data from external NoSQL containers (SKILL.md). While this represents a surface for interacting with external data, the skill provides robust guidance on using structured data models and sanitization (acceptance-criteria.md) to manage this surface responsibly. The skill also includes standard capabilities for account, database, and container-level management (SKILL.md).
Audit Metadata