Azure Networking Audit

Security checks across malware telemetry and agentic risk

Overview

This is a read-only Azure networking audit guide, with one disclosed RBAC reference section users should run only when needed.

Install only if you want the agent to inspect Azure networking configuration in the selected account. Use least-privileged Reader or granular network read permissions, set the subscription/resource group/VNet explicitly, and avoid running or sharing the role-assignment commands unless IAM context is specifically needed for the audit.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

Medium

Confidence: 93% confidence
Finding: The skill is described as a VNet networking audit, but this reference adds identity and RBAC enumeration commands that expand collection into access-control data outside the stated scope. Even though the commands are read-only, they can expose sensitive principal, role, and subscription authorization details and enable unnecessary reconnaissance if an agent follows them automatically.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal