70High
The skill allows powerful Azure resource management and sensitive data querying
Behavior Analysis
Description verified — behavior matches claim
Claims to do
Azure AI Gateway: Configure Azure API Management (APIM) as an AI Gateway for governing AI models, MCP tools, and agents.
Actually does
This skill provides Azure CLI (`az`) commands to retrieve Azure API Management (APIM) gateway details, list backends, get subscription keys, discover Azure OpenAI resources, create APIM backends, and grant role assignments. It also includes `curl` commands for testing AI gateway endpoints and references external documentation for applying governance policies.
Skill Info
Namemicrosoft/azure-skills/azure-aigateway
Registrygithub
Versioneb84d07b5490
PURLpkg:github/microsoft/azure-skills@eb84d07b5490?skill=azure-aigateway
Stars849
Installs292,500
Source
SHA-2562229d5e496d1...
SHA-18a07caf99ce1...
MD57e2c46657fe8...
TLSH2ea1a4089a62...
ssdeep96:o+PPvHyMW...
Size5,029 bytes
Install
This skill has been flagged as potentially malicious. Review the findings below before installing.
Assessments (1)
AI Agent Traps ↗Broad Azure CLI Command Execution Capabilityhighcommand execution
The skill executes a wide range of Azure CLI commands (`az apim`, `az cognitiveservices`, `az role assignment`). While intended for legitimate configuration, this capability, if exploited via prompt injection or manipulated inputs, could lead to unauthorized resource modification, creation, or deletion within the Azure environment.
100% confidence
az apim show --name <apim-name> ... az apim backend create ... az role assignment create ...
Sensitive Information Disclosure via Azure CLIhighreconnaissance
The skill uses Azure CLI commands to query sensitive information such as API Management gateway URLs, backend details, subscription keys, and Cognitive Services account lists. If an attacker can control the execution or parameters, this could lead to unauthorized information disclosure or reconnaissance of the Azure environment.
100% confidence
az apim show ... --query "gatewayUrl" az apim subscription keys list ... az cognitiveservices account list ...
Privilege Management via Azure Role Assignmenthighprivilege escalation
The skill includes a command to create Azure role assignments (`az role assignment create`). This powerful capability, if misused or if the `assignee` or `role` parameters are manipulated, could lead to unauthorized privilege escalation or granting of excessive permissions within the Azure subscription.
100% confidence
az role assignment create --assignee <apim-principal-id> --role "Cognitive Services User" --scope <aoai-resource-id>
Version History (2)
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/microsoft/azure-skills/azure-aigateway)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/microsoft/azure-skills/azure-aigateway"><img src="https://mondoo.com/ai-agent-security/api/badge/github/microsoft/azure-skills/azure-aigateway.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/microsoft/azure-skills/azure-aigateway.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow