azure-keyvault-keys-rust
Pass
Audited by Gen Agent Trust Hub on Feb 14, 2026
Risk Level: LOW
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill references standard, official Azure crates (
azure_security_keyvault_keysandazure_identity) from the official Rust package registry (crates.io). These are considered trusted sources under the [TRUST-SCOPE-RULE]. - [DATA_EXFILTRATION] (SAFE): While the skill interacts with Azure Key Vault (a sensitive service), it uses standard authentication patterns (Entra ID) and does not attempt to send cryptographic material or credentials to non-whitelisted domains.
- [COMMAND_EXECUTION] (SAFE): Use of
cargo addis standard for dependency management and is not used for arbitrary command execution. - [PROMPT_INJECTION] (SAFE): No instructions attempting to override agent behavior or bypass safety filters were found in the skill body or metadata.
- [INDIRECT_PROMPT_INJECTION] (INFO): The skill serves as a code generator/reference. It does not ingest untrusted external data during its own operation, limiting the surface area for indirect injection.
Audit Metadata