Tyler-R-Kendrick/azure-compliance
.agent/skills/azure-compliance/SKILL.md
Comprehensive Azure compliance and security auditing capabilities including best practices assessment, Key Vault expiration monitoring, and resource configuration validation. USE FOR: compliance scan, security audit, azqr, Azure best practices, Key Vault expiration check, compliance assessment, resource review, configuration validation, expired certificates, expiring secrets, orphaned resources, policy compliance, security posture evaluation. DO NOT USE FOR: deploying resources (use azure-deploy), cost analysis alone (use azure-cost-optimization), active security hardening (use azure-security-hardening), general Azure Advisor queries (use azure-observability).
$ install --global
skillsauthnpx skillsauth add Tyler-R-Kendrick/agent-skills azure-complianceInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 15, 2026, 10:50 PM110.7s5 files scanned
SKILL.md
- name:
- azure-compliance
- description:
- |
- USE FOR:
- compliance scan, security audit, azqr, Azure best practices, Key Vault expiration check,
- DO NOT USE FOR:
- deploying resources (use azure-deploy), cost analysis alone (use azure-cost-optimization),
Azure Compliance & Security Auditing
Triggers
Activate this skill when user wants to:
- Check Azure compliance or best practices
- Assess Azure resources for configuration issues
- Run azqr or Azure Quick Review
- Identify orphaned or misconfigured resources
- Review Azure security posture
- "Show me expired certificates/keys/secrets in my Key Vault"
- "Check what's expiring in the next 30 days"
- "Audit my Key Vault for compliance"
- "Find secrets without expiration dates"
- "Check certificate expiration dates"
Assessments
| Assessment | Reference | |------------|-----------| | Comprehensive Compliance (azqr) | references/azure-quick-review.md | | Key Vault Expiration | references/azure-keyvault-expiration-audit.md |
MCP Tools
| Tool | Purpose |
|------|---------|
| mcp_azure_mcp_extension_azqr | Run azqr compliance scans |
| mcp_azure_mcp_subscription_list | List available subscriptions |
| mcp_azure_mcp_group_list | List resource groups |
| keyvault_key_list | List all keys in vault |
| keyvault_key_get | Get key details including expiration |
| keyvault_secret_list | List all secrets in vault |
| keyvault_secret_get | Get secret details including expiration |
| keyvault_certificate_list | List all certificates in vault |
| keyvault_certificate_get | Get certificate details including expiration |
Related Skills
Tyler-R-Kendrick/azure-prepare
tools
VerifiedTrustedCommunity
REQUIRED FIRST STEP: You MUST invoke this skill BEFORE generating ANY Azure application code, infrastructure files, or Azure CLI commands. This skill prepares applications for Azure hosting. USE THIS SKILL when users want to create new Azure applications, ADD new components or services to existing applications, UPDATE or modify existing Azure configurations, modernize applications for Azure, or deploy to Azure. Do NOT generate azure.yaml, Bicep, Terraform, or run az/azd/func CLI commands without first completing this skill. This applies to NEW projects AND changes to EXISTING projects.
7SKILL.mdUpdated Apr 15, 2026
Tyler-R-Kendrick/azure-postgres
development
VerifiedTrustedCommunity
Create new Azure Database for PostgreSQL Flexible Server instances and configure passwordless authentication with Microsoft Entra ID. Set up developer access, managed identities for apps, group-based permissions, and migrate from password-based to Entra ID authentication. Trigger phrases include "passwordless for postgres", "entra id postgres", "azure ad postgres authentication", "postgres managed identity", "migrate postgres to passwordless".
7SKILL.mdUpdated Apr 15, 2026
Tyler-R-Kendrick/azure-observability
testing
VerifiedTrustedCommunity
Azure Observability Services including Azure Monitor, Application Insights, Log Analytics, Alerts, and Workbooks. Provides metrics, APM, distributed tracing, KQL queries, and interactive reports.
7SKILL.mdUpdated Apr 15, 2026
Tyler-R-Kendrick/azure-networking
testing
VerifiedTrustedCommunity
Azure Networking Services including Virtual Networks, Private Endpoints, Load Balancers, Application Gateway, Front Door, and DNS. Covers hub-spoke topology, private endpoint patterns, and network security layers. USE FOR: virtual network setup, private endpoint configuration, hub-spoke topology, VNet peering, network security groups, Azure firewall rules, load balancer setup, Application Gateway configuration, Azure Front Door, private link setup, DNS configuration, network isolation DO NOT USE FOR: compute resource configuration (use azure-create-app), Azure Functions networking (use azure-functions), database networking within postgres/cosmos (use respective skills), cost analysis (use azure-cost-optimization), resource deployment (use azure-deploy)
7SKILL.mdUpdated Apr 15, 2026