powershell-7-expert
PassAudited by ClawScan on May 4, 2026.
Overview
This is an instruction-only PowerShell helper; it covers powerful cloud/admin automation, but the artifacts do not show hidden code, credential collection, or automatic execution.
This skill appears safe as an advisory PowerShell 7 expert. Before using any generated automation, check which tenant, subscription, repository, or account it targets, run dry-run options where possible, and keep credentials scoped and protected.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Generated scripts could change cloud resources, identity settings, or CI/CD behavior if executed with sufficient privileges.
The skill is intended to help create automation for cloud, identity, and CI/CD systems that can make impactful changes if a user runs the resulting commands or scripts.
Azure automation using Az PowerShell + Azure CLI ... Graph API automation for M365/Entra ... “Automate Azure VM lifecycle tasks across multiple subscriptions”
Review generated commands before running them, test in a non-production environment, and use -WhatIf/-Confirm or equivalent safeguards for state-changing operations.
If the user supplies broadly privileged identities or Graph permissions, scripts created with this skill may operate with those privileges.
The skill anticipates use of cloud identities and secrets, which is expected for Azure/M365 automation, but the artifacts do not require or collect credentials.
Auth model chosen (Managed Identity, Service Principal, Graph) ... Secure handling of secrets (Key Vault, SecretManagement)
Use least-privilege identities, scope permissions to the target tenant/subscription, avoid pasting raw secrets into prompts, and prefer managed identity or secure secret stores.