azure-cosmos-py
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install 'azure-cosmos' and 'azure-identity', which are official and trusted packages from Microsoft.
- [SAFE]: Authentication is implemented using DefaultAzureCredential, which is a security best practice that leverages managed identities and avoids the use of hardcoded secrets or sensitive credentials within the code.
- [SAFE]: The documentation includes explicit guidance on using parameterized queries to mitigate the risk of database injection attacks.
- [SAFE]: All environment variable examples use placeholders (e.g., '') rather than exposing real sensitive data or credentials.
Audit Metadata