Skills
skills/tfsugjp/csharptemplate/azure-devops-cli/Gen Agent Trust Hub

azure-devops-cli

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches the Azure CLI installation script from Microsoft's official shortlink service (aka.ms). This is a trusted source used for legitimate software distribution.
  • [COMMAND_EXECUTION]: Executes the downloaded installation script with administrative privileges using sudo. This is a documented and standard procedure for system-level installation of the Azure CLI on Linux distributions.
  • [PROMPT_INJECTION]: The skill facilitates the retrieval of data from Azure DevOps (such as work items, pull requests, and pipeline logs) which may contain content from untrusted third parties.
  • Ingestion points: External data is ingested through commands like az repos pr list, az boards query, and az pipelines runs list in SKILL.md.
  • Boundary markers: There are no defined delimiters or specific instructions provided to the agent to treat retrieved data as untrusted or to ignore embedded instructions.
  • Capability inventory: The skill allows the agent to execute a wide range of Azure CLI commands and local shell operations.
  • Sanitization: No validation or sanitization logic is specified for data processed from the Azure DevOps environment.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 07:31 PM