Azure Auth
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward Microsoft Entra authentication guide/template with expected token handling and no evidence of hidden or harmful behavior.
Reasonable to install as authentication reference material. Before copying templates into production, review Azure scopes and redirect URIs, prefer least privilege, consider sessionStorage if persistent browser sign-in is not needed, restrict authenticated fetch calls to trusted API origins, and keep strong XSS protections because browser-stored auth state can be exposed by frontend vulnerabilities.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.