Skills
skills/microsoft/skills/azure-resource-manager-playwright-dotnet/Gen Agent Trust Hub

azure-resource-manager-playwright-dotnet

Fail

Audited by Gen Agent Trust Hub on Feb 14, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The skill installs the Azure.ResourceManager.Playwright and Azure.Identity packages. These are from the trusted Microsoft/Azure organization on NuGet.
  • [PROMPT_INJECTION] (HIGH): High-impact indirect prompt injection surface detected. 1. Ingestion point: Untrusted data enters the agent context through workspace names and resource identifiers (SKILL.md). 2. Boundary markers: Absent; no delimiters are used to wrap external content. 3. Capability inventory: The skill allows for management plane operations including resource creation (CreateOrUpdateAsync) and deletion (DeleteAsync). 4. Sanitization: Absent; the skill does not include validation or escaping for the provided parameters.
  • [COMMAND_EXECUTION] (LOW): The skill provides dotnet CLI commands for package installation as part of the environment setup process.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 14, 2026, 11:11 AM