azure-compliance
Comprehensive Azure compliance and security auditing capabilities including best practices assessment, Key Vault expiration monitoring, and resource configuration validation. WHEN: compliance scan, security audit, azqr, Azure best practices, Key Vault expiration check, compliance assessment, resource review, configuration validation, expired certificates, expiring secrets, orphaned resources, policy compliance, security posture evaluation.
Install with Tessl CLI
npx tessl i github:microsoft/azure-skills --skill azure-compliance85
Quality
78%
Does it follow best practices?
Impact
96%
1.47xAverage score across 3 eval scenarios
Optimize this skill with Tessl
npx tessl skill review --optimize ./.github/plugins/azure-skills/skills/azure-compliance/SKILL.mdQuality
Discovery
100%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is a well-crafted skill description that excels across all dimensions. It provides specific capabilities, includes an explicit 'WHEN:' clause with comprehensive trigger terms, and maintains clear distinctiveness through Azure-specific terminology. The description uses proper third-person voice and avoids vague language.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Lists multiple specific concrete actions: 'best practices assessment', 'Key Vault expiration monitoring', 'resource configuration validation', 'compliance scan', 'security audit'. These are concrete, actionable capabilities. | 3 / 3 |
Completeness | Clearly answers both what (Azure compliance and security auditing with specific capabilities) and when (explicit 'WHEN:' clause with comprehensive trigger terms). The explicit trigger guidance is present and thorough. | 3 / 3 |
Trigger Term Quality | Excellent coverage of natural terms users would say: 'compliance scan', 'security audit', 'azqr', 'Key Vault expiration check', 'expired certificates', 'expiring secrets', 'orphaned resources', 'policy compliance'. Includes both technical terms and natural language variations. | 3 / 3 |
Distinctiveness Conflict Risk | Highly distinctive with Azure-specific focus, mentioning 'azqr', 'Key Vault', and Azure-specific concepts. Unlikely to conflict with generic security or compliance skills due to clear Azure niche and specific tooling references. | 3 / 3 |
Total | 12 / 12 Passed |
Implementation
57%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This skill provides good structural organization and clear navigation to reference materials, but lacks the concrete, executable guidance needed for immediate actionability. The workflow steps are too abstract and would benefit from specific commands or code examples. The content has some redundancy between sections that could be tightened.
Suggestions
Add executable code examples or CLI commands for key operations (e.g., actual azqr command syntax, az CLI commands for Key Vault inspection)
Consolidate 'When to Use This Skill' and 'Skill Activation Triggers' sections to eliminate redundancy
Add explicit validation checkpoints to the Assessment Workflow, especially before remediation steps (e.g., 'Verify scan completed successfully before analyzing results')
Include a concrete example showing expected output format from azqr or Key Vault expiration checks
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The skill is reasonably efficient but includes some redundancy - the 'Skill Activation Triggers' section largely duplicates 'When to Use This Skill', and the trigger examples could be condensed. The tables are well-structured but some content feels padded. | 2 / 3 |
Actionability | Provides tool names and workflow steps but lacks executable code examples. The workflow is described at a high level ('Run azqr and capture output artifacts') without showing actual commands or code snippets that Claude could execute directly. | 2 / 3 |
Workflow Clarity | The 5-step assessment workflow provides a sequence but lacks explicit validation checkpoints. For compliance/security auditing involving potentially destructive remediation, there's no feedback loop for verifying fixes or validating scan results before proceeding. | 2 / 3 |
Progressive Disclosure | Excellent structure with clear overview tables, well-signaled one-level-deep references to detailed guides (azure-quick-review.md, azure-keyvault-expiration-audit.md), and organized SDK references. Navigation is straightforward and content is appropriately split. | 3 / 3 |
Total | 9 / 12 Passed |
Validation
100%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 11 / 11 Passed
Validation for skill structure
No warnings or errors.
- Reviewed
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.