azure-keyvault-certificates-rust
Pass
Audited by Gen Agent Trust Hub on Feb 14, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- Unverifiable Dependencies & Remote Code Execution (LOW): The skill utilizes cargo add to install azure_security_keyvault_certificates and azure_identity. These packages are from a trusted source (Azure/Microsoft), which downgrades the finding to LOW per [TRUST-SCOPE-RULE].
- Data Exposure & Exfiltration (INFO): The code examples involve network requests to vault.azure.net. This is the standard endpoint for Azure Key Vault services and is required for the skill's operation. No sensitive local files are accessed or exfiltrated.
- Privilege Escalation (SAFE): No use of sudo or modification of system-level permissions was detected. The RBAC suggestions provided in the documentation follow the principle of least privilege.
Audit Metadata