Azure Cosmos DB Python

PassAudited by ClawScan on May 1, 2026.

Overview

This skill is coherent for Azure Cosmos DB work, but users should notice that it can use Azure credentials and create or change cloud database resources.

This looks like a normal Azure Cosmos DB SDK/helper skill. Before installing or using it, confirm the Azure endpoint and account, use least-privilege credentials, and review any create, update, delete, throughput, or cross-partition query actions because they can affect real data and costs.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Note

ASI02: Tool Misuse and Exploitation

What this means

If run against the wrong Azure account or with the wrong settings, it could create persistent database resources or incur Cosmos DB throughput costs.

Why it was flagged

The helper script can create Cosmos DB databases/containers and optionally provision throughput, which is expected for this skill but can change cloud resources and costs.

Skill content

database = client.create_database_if_not_exists(id=database_id)
...
container = database.create_container_if_not_exists(
    **container_props,
    offer_throughput=throughput
)

Recommendation

Run the script only for the intended Azure endpoint, database, and container; review throughput, TTL, and indexing options before execution.

Note

ASI03: Identity and Privilege Abuse

What this means

The skill may act with the permissions of your Azure account or Cosmos DB key, including the ability to create resources or read container metadata.

Why it was flagged

The script uses an account key or Azure DefaultAzureCredential to access Cosmos DB. This is normal for Azure integration, but it grants authority according to the user's Azure permissions.

Skill content

key = os.environ.get("COSMOS_KEY")
if key:
    return CosmosClient(url=endpoint, credential=key)
else:
    credential = DefaultAzureCredential()
    return CosmosClient(url=endpoint, credential=credential)

Recommendation

Use least-privilege Cosmos DB/Azure roles, prefer scoped credentials over broad account keys, and verify `COSMOS_ENDPOINT` points to the intended account.

Note

ASI04: Agentic Supply Chain Vulnerabilities

What this means

Installing unpinned packages can pull newer dependency versions than expected.

Why it was flagged

The skill asks users to install external Python packages without version pins. This is expected for an SDK guide, but package provenance and versions should be verified.

Skill content

pip install azure-cosmos azure-identity

Recommendation

Install official Azure packages from a trusted package index and consider pinning versions in production environments.