azure-keyvault-secrets-ts
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security vulnerabilities were detected. The skill follows industry-standard security practices for cloud secret management.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references official Microsoft packages (
@azure/keyvault-secrets,@azure/identity,@azure/keyvault-keys). These are from a trusted organization and are necessary for the skill's stated purpose. Per [TRUST-SCOPE-RULE], these downloads are considered safe. - [CREDENTIALS_UNSAFE] (SAFE): The skill demonstrates excellent security posture by explicitly prohibiting hardcoded secrets and credentials. It provides clear guidelines in the acceptance criteria (File: references/acceptance-criteria.md) against using hardcoded keys and instead requires the use of environment variables and managed identities.
- [COMMAND_EXECUTION] (SAFE): The shell commands provided are limited to standard package installation (
npm install) of the required SDKs.
Audit Metadata