azure-devops
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill uses the
AZDO_PATenvironment variable to authenticate requests to Azure DevOps services. The data transmission is directed to the user-configured Azure DevOps instance. - [COMMAND_EXECUTION]: Uses
curlandjqto interact with remote endpoints. The commands are standard for API interaction and do not involve arbitrary code execution or unsafe shell interpolation. - [PROMPT_INJECTION]: The skill ingests data from Azure DevOps (titles, descriptions, etc.), creating a surface for indirect prompt injection.
- Ingestion points: Data fetched via
curlfrom the Azure DevOps REST API. - Boundary markers: No explicit delimiter or 'ignore' instructions are present in the shell commands.
- Capability inventory: Limited to network requests (
curl) and JSON parsing (jq). - Sanitization: The skill relies on
jqfor structured extraction of specific fields.
Audit Metadata