azure-microsoft-playwright-testing-ts
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- Official Package Usage: The skill utilizes official Microsoft packages under the
@azureand@playwrightscopes. These are well-maintained libraries from a recognized vendor. - Secure Authentication Guidance: The instructions emphasize the use of
DefaultAzureCredentialandManagedIdentityCredentialfrom the@azure/identitylibrary. This is a secure approach that avoids hardcoding credentials and leverages managed identities or environment-based authentication. - Credential Safety: The documentation explicitly identifies hardcoding access tokens as an 'Anti-Pattern' and provides clear instructions on using environment variables and GitHub secrets for sensitive information like the
PLAYWRIGHT_SERVICE_URL. - Minimal Permissions: The provided GitHub Actions examples demonstrate the principle of least privilege, requesting only
id-token: write(required for OIDC authentication) andcontents: readpermissions. - Transparent Migration Path: The skill includes detailed migration guidance from deprecated packages, ensuring users move toward current, supported, and secure versions of the SDK.
Audit Metadata