azure-devops
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- SAFE (SAFE): No security vulnerabilities or malicious patterns detected. The skill is purely instructional and follows standard best practices for DevOps management.
- PROMPT_INJECTION (LOW): The skill outlines workflows for processing external data such as Pull Request descriptions and work items. This creates a theoretical surface for Indirect Prompt Injection, but the risk is mitigated by the skill's emphasis on human-in-the-loop processes like manual approvals, branch policies, and code reviews.
Audit Metadata