azure-compliance
Run Azure compliance and security audits with azqr plus Key Vault expiration checks. Covers best-practice assessment, resource review, policy/compliance validation, and security posture checks. WHEN: compliance scan, security audit, BEFORE running azqr (compliance cli tool), Azure best practices, Key Vault expiration check, expired certificates, expiring secrets, orphaned resources, compliance assessment.
83
78%
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Passed
No known issues
Optimize this skill with Tessl
npx tessl skill review --optimize ./plugin/skills/azure-compliance/SKILL.mdQuality
Discovery
100%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is a well-crafted skill description that excels across all dimensions. It provides specific capabilities, includes an explicit 'WHEN:' clause with natural trigger terms, and is clearly scoped to Azure compliance auditing with the azqr tool. The description effectively differentiates itself from generic security or compliance skills through its Azure and Key Vault specificity.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Lists multiple specific concrete actions: 'compliance and security audits with azqr', 'Key Vault expiration checks', 'best-practice assessment', 'resource review', 'policy/compliance validation', 'security posture checks'. These are concrete, actionable capabilities. | 3 / 3 |
Completeness | Clearly answers both what (run Azure compliance/security audits, Key Vault checks, best-practice assessment, etc.) AND when with explicit 'WHEN:' clause listing specific trigger scenarios like 'compliance scan', 'security audit', 'BEFORE running azqr'. | 3 / 3 |
Trigger Term Quality | Excellent coverage of natural terms users would say: 'compliance scan', 'security audit', 'Azure best practices', 'Key Vault expiration check', 'expired certificates', 'expiring secrets', 'orphaned resources', 'compliance assessment'. These are terms users would naturally use when needing this skill. | 3 / 3 |
Distinctiveness Conflict Risk | Highly distinctive with Azure-specific focus, mentions the specific tool 'azqr', and targets a clear niche (Azure compliance/security auditing with Key Vault). Unlikely to conflict with generic security or compliance skills due to Azure and azqr specificity. | 3 / 3 |
Total | 12 / 12 Passed |
Implementation
57%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This skill demonstrates strong organization and progressive disclosure with clear references to detailed documentation. However, it lacks concrete executable examples and relies heavily on abstract workflow descriptions. The content would benefit from specific code/command examples showing how to actually invoke the MCP tools and process their outputs.
Suggestions
Add executable code examples showing how to invoke key MCP tools (e.g., `mcp_azure_mcp_extension_azqr` with actual parameters and expected output format)
Integrate validation checkpoints into the workflow steps (e.g., 'Verify azqr completed successfully before analyzing results')
Consolidate 'When to Use This Skill' and 'Skill Activation Triggers' sections to reduce redundancy
Add a concrete example showing the full flow from running a scan to interpreting a specific finding
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The skill is reasonably efficient but includes some redundancy (e.g., 'Skill Activation Triggers' largely duplicates 'When to Use This Skill'). The tables are well-structured but some sections like 'Best Practices' contain generic advice Claude already knows. | 2 / 3 |
Actionability | Provides tool names and workflow steps but lacks executable code examples. The workflow is described at a high level ('Run azqr and capture output artifacts') without showing actual commands or code snippets for how to invoke tools or process results. | 2 / 3 |
Workflow Clarity | The 5-step assessment workflow provides a clear sequence but lacks explicit validation checkpoints. No feedback loops for error recovery are defined - the error handling table is separate from the workflow and doesn't integrate validation steps into the process. | 2 / 3 |
Progressive Disclosure | Excellent structure with clear overview and well-signaled one-level-deep references to detailed materials (azure-quick-review.md, azure-keyvault-expiration-audit.md, SDK guides). Navigation is easy with organized tables pointing to specific reference files. | 3 / 3 |
Total | 9 / 12 Passed |
Validation
100%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 11 / 11 Passed
Validation for skill structure
No warnings or errors.
- Repository
- microsoft/github-copilot-for-azure
- Commit
1f4304b
- Reviewed
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.