azure-mgmt-apicenter-py
Fail
Audited by Gen Agent Trust Hub on Feb 14, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill requires installation of official Azure SDK packages.
- Evidence:
pip install azure-mgmt-apicenter azure-identityfound inSKILL.md. - Trust Status: Trusted source (Microsoft/Azure); severity downgraded per [TRUST-SCOPE-RULE].
- [PROMPT_INJECTION] (HIGH): Vulnerable to indirect prompt injection through the processing of external API specifications.
- Ingestion points: The
import_specificationmethod inSKILL.mdingests raw strings provided as API specifications. - Boundary markers: None; untrusted data is processed without delimiters or instructions to ignore embedded commands.
- Capability inventory: High; the skill has permissions to create, update, and manage cloud infrastructure via
ApiCenterMgmtClient. - Sanitization: Absent; the logic does not filter or sanitize the contents of the imported specification strings.
- Severity Justification: The skill combines the ingestion of untrusted external data (Category 8) with high-privilege write/execute capabilities on Azure resources, meeting the HIGH severity criteria.
Recommendations
- AI detected serious security threats
Audit Metadata