azure-observability
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill documentation references official Azure SDK packages for Python, Java, .NET, and TypeScript. These are from trusted sources (Microsoft/Azure) and the references are intended for developer guidance.
- DATA_EXFILTRATION (SAFE): No hardcoded credentials or unauthorized data exfiltration patterns were found. The skill correctly uses placeholders like '' and 'DCE_ENDPOINT' for sensitive configuration.
- PROMPT_INJECTION (SAFE): No prompt injection or instructional override patterns were identified in the markdown instructions or metadata.
- COMMAND_EXECUTION (SAFE): CLI references are restricted to standard 'az monitor' commands for querying metrics and logs, which is consistent with the skill's stated purpose.
- INDIRECT PROMPT INJECTION (LOW): While the skill interacts with log data (Log Analytics/KQL), this is a standard operational surface and there are no signs of malicious interpolation or capability abuse.
Audit Metadata