Security Audit
azure-monitor-ingestion-java
github.com/sickn33/antigravity-awesome-skillsTrust Assessment
azure-monitor-ingestion-java received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 0 medium, and 1 low severity. Key findings include Untrusted skill transmits user-provided data to external service.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| LOW | Untrusted skill transmits user-provided data to external service The `azure-monitor-ingestion-java` skill, being an untrusted component, is designed to send custom logs (user-provided data) to Azure Monitor via its `client.upload()` method. This means any data passed to this skill will be transmitted to an external Azure Data Collection Endpoint. While this is the skill's intended functionality, users must be aware that sensitive information included in these logs will be sent to an external cloud service. Exercise caution when providing sensitive data to untrusted skills. Ensure that only non-sensitive or appropriately anonymized data is included in logs sent via this skill. Implement data filtering or masking if sensitive information might be present in the source logs before passing it to the skill. | LLM | SKILL.md:100 |
Scan History
Embed Code
[](https://skillshield.io/report/d105d623f9e2a872)
Powered by SkillShield