azure-identity-java
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- Authentication Best Practices: The skill correctly identifies and warns against hardcoding sensitive information like client secrets or certificates. It demonstrates the use of
System.getenv()andDefaultAzureCredential, which are standard and secure ways to handle credentials in cloud environments. - Trusted Library Reference: The skill references the
com.azure:azure-identityJava package and the official Azure SDK GitHub repository. These are verified resources provided by the vendor for secure authentication. - Secure Credential Handling: Examples for
ClientSecretCredentialandClientCertificateCredentialinclude instructions to use environment variables for sensitive inputs, aligning with security best practices for avoiding credential exposure. - Placeholder usage: The documentation uses standard placeholders (e.g.,
<client-secret>,{vault-name}) for user-specific data, preventing accidental use of real credentials in code snippets.
Audit Metadata