[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-plugin-microsoft-azure-ru":3,"guides-for-microsoft-azure":262},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":26,"identity":217,"isFallback":221,"parentExtension":222,"providers":247,"relations":250,"repo":251,"workflow":261},1778003244050.7913,"k17fmczhfpg65qxc75nastsby58645j8",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":12,"sourceUrl":13,"tags":14},"Microsoft Azure MCP integration for cloud resource management, deployments, and Azure services. Manage your Azure infrastructure, monitor applications, and deploy resources directly from Claude Code.",{},"Azure Skills Plugin","https://github.com/microsoft/azure-skills/tree/HEAD/.github/plugins/azure-skills",[15,16,17,18,19,20,21,22,23,24,25],"azure","cloud","infrastructure","deployment","devops","mcp","foundry","diagnostics","ai","security","compliance",{"_creationTime":27,"_id":28,"extensionId":5,"locale":29,"result":30,"trustSignals":206,"workflow":215},1778007125066.7375,"kn7837bj5rrh0vtyng2ej6nw0x865qs8","en",{"checks":31,"evaluatedAt":196,"extensionSummary":197,"promptVersionExtension":198,"promptVersionScoring":199,"rationale":200,"score":201,"summary":202,"tags":203,"targetMarket":204,"tier":205},[32,37,40,43,47,50,54,59,62,65,69,74,78,82,85,88,91,94,97,100,104,108,112,116,120,123,126,129,133,136,139,142,145,148,151,154,157,160,163,166,169,172,175,178,182,185,188,192],{"category":33,"check":34,"severity":35,"summary":36},"Practical Utility","Problem relevance","pass","The description clearly states the problem of managing Azure infrastructure, deployments, and services directly from Claude Code.",{"category":33,"check":38,"severity":35,"summary":39},"Unique selling proposition","The extension provides a comprehensive integration with Microsoft Azure MCP and skills, enabling direct management of cloud resources, which goes beyond basic API wrapping and offers significant value over simple prompting.",{"category":33,"check":41,"severity":35,"summary":42},"Production readiness","The plugin covers a broad range of Azure services and management tasks, including deployment and monitoring, suggesting it is ready for production workflows.",{"category":44,"check":45,"severity":35,"summary":46},"Scope","Single responsibility principle","The plugin focuses specifically on Microsoft Azure integration, encompassing resource management, deployments, and services, which aligns with a single, coherent domain.",{"category":44,"check":48,"severity":35,"summary":49},"Description quality","The displayed description accurately reflects the plugin's capabilities in integrating with Microsoft Azure for cloud resource management and deployments.",{"category":51,"check":52,"severity":35,"summary":53},"Invocation","Scoped tools","The plugin utilizes specific tools for Azure services (e.g., 'create_issue', 'list_issues' patterns) rather than a single generalist tool.",{"category":55,"check":56,"severity":57,"summary":58},"Documentation","Configuration & parameter reference","warning","While the README details setup and authentication, it doesn't explicitly document all configuration options or precedence orders for environment variables.",{"category":44,"check":60,"severity":35,"summary":61},"Tool naming","The tool names used within the skills are generally descriptive and follow verb-noun patterns relevant to Azure operations.",{"category":44,"check":63,"severity":35,"summary":64},"Minimal I/O surface","The tools appear to request only necessary data and return focused outputs, aligning with the principle of minimal I/O surface.",{"category":66,"check":67,"severity":35,"summary":68},"License","License usability","The extension is licensed under the MIT license, which is a permissive open-source license.",{"category":70,"check":71,"severity":72,"summary":73},"Maintenance","Commit recency","info","There are no recent commits on the default branch (pushedAt: n/a), but the presence of a CHANGELOG.md with recent entries suggests active maintenance.",{"category":70,"check":75,"severity":76,"summary":77},"Dependency Management","not_applicable","No third-party dependencies were explicitly identified in the provided context that require specific management.",{"category":79,"check":80,"severity":57,"summary":81},"Security","Secret Management","The README mentions environment variables for authentication (AZURE_TENANT_ID, AZURE_CLIENT_ID, AZURE_CLIENT_SECRET), but it is unclear if these are handled securely and not echoed in output or logs. The telemetry script also uses environment variables.",{"category":79,"check":83,"severity":35,"summary":84},"Injection","No explicit third-party data loading or web fetching that could be subject to injection was detected.",{"category":79,"check":86,"severity":35,"summary":87},"Transitive Supply-Chain Grenades","All components appear to be bundled within the repository, and no runtime downloads or remote execution of scripts were identified.",{"category":79,"check":89,"severity":35,"summary":90},"Sandbox Isolation","The plugin appears to operate within expected scopes and does not attempt to modify files outside of its designated project folders.",{"category":79,"check":92,"severity":35,"summary":93},"Sandbox escape primitives","No detached-process spawns or deny-retry loops were detected in the provided script snippets.",{"category":79,"check":95,"severity":57,"summary":96},"Data Exfiltration","The telemetry script (`track-telemetry.sh`) sends data to an Azure MCP endpoint. While the purpose is described as telemetry, the README does not explicitly state this and it could be considered an undocumented outbound call.",{"category":79,"check":98,"severity":35,"summary":99},"Hidden Text Tricks","No hidden text tricks or suspicious Unicode characters were found in the bundled files.",{"category":101,"check":102,"severity":35,"summary":103},"Hooks","Opaque code execution","The hook scripts appear to be readable bash scripts and not obfuscated or dynamically fetched code.",{"category":105,"check":106,"severity":35,"summary":107},"Portability","Structural Assumption","The plugin's installation instructions and paths seem to follow standard conventions, avoiding assumptions about deeply user-specific project organization.",{"category":109,"check":110,"severity":76,"summary":111},"Trust","Issues Attention","Issue data (opened/closed) is not available for this repository.",{"category":113,"check":114,"severity":35,"summary":115},"Versioning","Release Management","A version is clearly declared in the plugin.json manifests (1.1.32) and a CHANGELOG.md is present with versioned entries.",{"category":117,"check":118,"severity":57,"summary":119},"Code Execution","Validation","While the telemetry script handles input, it's unclear if a formal schema library is used for all inputs and outputs across all skills and MCP commands. The script exits with `|| true` which can hide errors.",{"category":79,"check":121,"severity":35,"summary":122},"Unguarded Destructive Operations","No explicit destructive operations like `rm -rf` or `git push --force` were found in the provided scripts, and the plugin's focus is on management and deployment which are typically guarded.",{"category":117,"check":124,"severity":57,"summary":125},"Error Handling","The telemetry script uses `set +e` and `|| true` for some operations, which can mask errors. Comprehensive error handling details across all skills and MCP commands are not fully visible.",{"category":117,"check":127,"severity":57,"summary":128},"Logging","The plugin includes a telemetry hook that sends data remotely. While this is a form of logging, there's no explicit mention of a local audit file for user review of executed actions, and telemetry collection is opt-out rather than opt-in.",{"category":130,"check":131,"severity":72,"summary":132},"Compliance","GDPR","The extension deals with Azure resources, which may contain personal data. While not submitting directly to a 3rd party without approval, the telemetry data sent to Azure MCP might contain personal data without explicit sanitization or user approval mentioned.",{"category":130,"check":134,"severity":35,"summary":135},"Target market","The extension's functionality is primarily focused on Microsoft Azure, which is a global service. No specific regional restrictions or jurisdiction-specific workflows were identified that would limit its target market.",{"category":105,"check":137,"severity":35,"summary":138},"Runtime stability","The plugin uses standard tools like Node.js and Azure CLI, suggesting good cross-platform compatibility, and the README mentions multi-host support.",{"category":44,"check":140,"severity":35,"summary":141},"Tool surface size","The plugin exposes over 40 services via MCP servers and numerous skills, but the README groups them logically, and the number of distinct skills appears to be within a manageable range.",{"category":51,"check":143,"severity":35,"summary":144},"Name collisions","The plugin's skills and MCP tools have distinct names, and the README clearly distinguishes between skills, MCP servers, and Foundry MCP, preventing arbitrary router mismatches.",{"category":51,"check":146,"severity":35,"summary":147},"Overlapping near-synonym tools","While there are many tools and skills, their descriptions and names indicate distinct actions, avoiding significant overlap or redundancy.",{"category":51,"check":149,"severity":57,"summary":150},"Hooks-off mechanism","The plugin includes a telemetry hook which is enabled by default (opt-out). While the README provides an environment variable to disable telemetry (`AZURE_MCP_COLLECT_TELEMETRY=false`), there is no explicit 'hooks-off' command or toggle for other potential hooks.",{"category":51,"check":152,"severity":35,"summary":153},"Hook matcher tightness","The provided hook configurations (copilot-hooks.json, cursor-hooks.json, hooks.json) use specific command paths and event types, indicating tight scoping rather than broad wildcard matching.",{"category":79,"check":155,"severity":57,"summary":156},"Hook security","The telemetry hook runs by default and sends data remotely. While the README provides an option to disable telemetry via an environment variable, this is an opt-out mechanism, and the prompt doesn't explicitly state that destructive or network-touching hooks are disabled by default or gated behind a documented env var beyond telemetry.",{"category":101,"check":158,"severity":76,"summary":159},"Silent prompt rewriting","No `UserPromptSubmit` hooks were found in the provided configuration files.",{"category":79,"check":161,"severity":76,"summary":162},"Permission Hook","No `PermissionRequest` hooks were found in the provided configuration files.",{"category":130,"check":164,"severity":57,"summary":165},"Hook privacy","The telemetry hook sends data via network without explicit user activation or approval, relying on an opt-out mechanism. The README does not detail the specifics of the data sent or its protection.",{"category":117,"check":167,"severity":35,"summary":168},"Hook dependency","The hook scripts provided are readable bash files and do not appear to rely on external binaries, fetched URLs, or obfuscated code.",{"category":55,"check":170,"severity":35,"summary":171},"Install / Setup Instructions","The README provides clear, step-by-step instructions for installing the plugin across various platforms (APM, GitHub Copilot CLI, VS Code, Claude Code, etc.) and outlines prerequisites.",{"category":55,"check":173,"severity":57,"summary":174},"Feature Transparency","The `plugin.json` manifests declare hooks (e.g., PostToolUse for telemetry), but the README only mentions telemetry collection in the Troubleshooting section as an opt-out and does not explicitly list or explain all declared hooks.",{"category":55,"check":176,"severity":35,"summary":177},"Phantom features","All features mentioned in the README, such as Azure skills, MCP Server, and Foundry MCP, have corresponding implementations or configurations within the plugin.",{"category":179,"check":180,"severity":35,"summary":181},"Convention","Layout convention adherence","The plugin follows Claude Code plugin conventions, with `plugin.json` in `.claude-plugin/` and hooks organized in a `hooks/` directory. The README also mentions relevant directories.",{"category":179,"check":183,"severity":35,"summary":184},"Plugin state","The plugin's installation and configuration seem to follow standard practices, and there's no indication of state being written outside of expected scopes.",{"category":79,"check":186,"severity":57,"summary":187},"Keychain-stored secrets","The README mentions using environment variables for secrets (Tenant ID, Client ID, Client Secret), but it does not specify if these are routed through `userConfig` with `sensitive: true` for keychain storage, potentially leading to secrets stored in plain text settings.",{"category":189,"check":190,"severity":35,"summary":191},"Dependencies","Tagged release sourcing","The `.mcp.json` file specifies `npx -y @azure/mcp@latest server start`, which suggests pulling the latest version of the `@azure/mcp` package, aligning with using published sources.",{"category":193,"check":194,"severity":35,"summary":195},"Installation","Clean uninstall","The plugin's installation appears to rely on standard package management and tool execution, with no evidence of background daemons or persistent services that would survive an uninstall.",1778007079861,"This plugin provides extensive capabilities for managing Azure cloud resources, deploying applications, and leveraging AI services. It includes over 25 curated Azure skills and integrates with the Azure MCP Server and Foundry MCP to offer over 200 structured tools across 40+ Azure services, facilitating tasks from resource provisioning and monitoring to AI model deployment and agent workflows.","2.0.0","3.4.0","The Azure Skills Plugin is a high-quality extension with strong documentation, clear scope, and robust functionality. It leverages Azure MCP and skills effectively for cloud management. Minor warnings regarding the explicit handling of secrets and the opt-out nature of telemetry prevent a perfect score, but overall it is well-maintained and trustworthy.",88,"A comprehensive plugin integrating Claude Code with Microsoft Azure services, MCP tools, and Foundry AI capabilities.",[15,16,17,18,19,20,21,22,23,24,25],"global","verified",{"codeQuality":207,"collectedAt":208,"documentation":209,"maintenance":211,"security":212,"testCoverage":214},{},1778007057022,{"descriptionLength":210,"readmeSize":8},199,{},{"hasNpmPackage":213,"smitheryVerified":213},false,{"hasCi":213,"hasTests":213},{"invalidatedAt":216,"updatedAt":216},1778008076651,{"githubOwner":218,"githubRepo":219,"locale":29,"slug":15,"type":220},"microsoft","azure-skills","plugin",true,{"_creationTime":223,"_id":224,"community":225,"display":226,"identity":231,"parentExtension":233,"providers":234,"relations":241,"workflow":243},1778003244050.7908,"k174atantpf8tzwsv30m8tbp5s8657da",{"reviewCount":8},{"description":227,"installMethods":228,"name":12,"sourceUrl":229,"tags":230},"Extension from microsoft/azure-skills",{},"https://github.com/microsoft/azure-skills",[15,16,17,18,218,19,20,21,22],{"githubOwner":218,"githubRepo":219,"locale":29,"slug":219,"type":232},"marketplace",null,{"extract":235,"smithery":240},{"commitSha":236,"license":237,"marketplace":238},"95b597f6a5356de50c55a4833a4b60f75f8022f8","MIT",{"name":219,"pluginCount":239},1,{"qualityScore":8,"totalActivations":8,"uniqueUsers":8,"useCount":8,"verified":213},{"repoId":242},"kd74mnsbgzcknqbegnrt37qhy5864rz0",{"anyEnrichmentAt":216,"extractAt":244,"githubAt":245,"invalidatedAt":216,"llmAt":246,"smitheryAt":216,"updatedAt":216},1778003244050,1778003247062,1778007125066,{"extract":248,"smithery":249},{"commitSha":236,"license":237},{"qualityScore":8,"totalActivations":8,"uniqueUsers":8,"useCount":8,"verified":213},{"parentExtensionId":224,"repoId":242},{"_creationTime":252,"_id":242,"identity":253,"providers":254,"workflow":259},1777995558409.8127,{"githubOwner":218,"githubRepo":219,"sourceUrl":229},{"discover":255},{"sources":256},[257,258],"skills-sh","vskill",{"discoverAt":260,"extractAt":244,"updatedAt":244},1777995558409,{"anyEnrichmentAt":216,"extractAt":244,"githubAt":245,"invalidatedAt":216,"llmAt":246,"smitheryAt":216,"updatedAt":216},[]]