← 返回 Skills 市场
3080
总下载
2
收藏
6
当前安装
1
版本数
在 OpenClaw 中安装
/install azure-infra
功能描述
Chat-based Azure infrastructure assistance using Azure CLI and portal context. Use for querying, auditing, and monitoring Azure resources (VMs, Storage, IAM, Functions, AKS, App Service, Key Vault, Azure Monitor, billing, etc.), and for proposing safe changes with explicit confirmation before any write/destructive action.
使用说明 (SKILL.md)
Azure Infra
Overview
Use the local Azure CLI to answer questions about Azure resources. Default to read‑only queries. Only propose or run write/destructive actions after explicit user confirmation.
Quick Start
- Ensure login:
az account show(if not logged in, runaz login --use-device-code). - If multiple subscriptions exist, ask the user to pick one; otherwise use the default subscription.
- Use read‑only commands to answer the question.
- If the user asks for changes, outline the exact command and ask for confirmation before running.
Safety Rules (must follow)
- Treat all actions as read‑only unless the user explicitly requests a change and confirms it.
- For any potentially destructive change (delete/terminate/destroy/modify/scale/billing/IAM credentials), require a confirmation step.
- Prefer
--dry-runwhen available and show the plan before execution. - Never reveal or log secrets (keys, client secrets, tokens).
Task Guide (common requests)
- Inventory / list: use
list/show/getcommands. - Health / errors: use Azure Monitor metrics/logs queries.
- Security checks: RBAC roles, public storage, NSG exposure, Key Vault access.
- Costs: Cost Management (read‑only).
- Changes: show exact CLI command and require confirmation.
Subscription & Tenant Handling
- If the user specifies a subscription/tenant, honor it.
- Otherwise use the default subscription from
az account show. - When results are subscription‑scoped, state the subscription used.
References
See references/azure-cli-queries.md for common command patterns.
Assets
assets/icon.svg— custom icon (dark cloud + terminal prompt, Azure‑blue accent)
安全使用建议
This skill appears to be a straightforward Azure CLI helper, but the metadata fails to declare the obvious dependency on the Azure CLI and does not call out that it will use whatever Azure credentials are already configured. Before installing or invoking it: (1) verify the skill's source/author and prefer an official publisher; (2) ensure the host's az CLI is present and that you understand which Azure identity (user login or service principal) the agent will use; (3) restrict that identity to least privilege or use a dedicated test subscription if possible; (4) do not allow the agent to execute write/destructive commands without manually reviewing the exact CLI command and confirming execution; (5) if you want stricter control, disable autonomous skill invocation for this skill or require an explicit enable step; and (6) ask the publisher to update metadata to declare the az dependency and explicitly state credential access so the risk is transparent.
功能分析
Type: OpenClaw Skill
Name: azure-infra
Version: 1.0.0
The skill is designed to interact with Azure CLI for querying, auditing, and proposing changes to Azure resources. While it involves executing shell commands and can perform write/destructive actions, the `SKILL.md` explicitly mandates strict safety rules: default to read-only, require explicit user confirmation for any write or destructive action, prefer dry-runs, and crucially, 'Never reveal or log secrets (keys, client secrets, tokens)'. These instructions actively mitigate risks like data exfiltration and unauthorized modifications, aligning the skill's capabilities with its stated purpose under strong safety constraints.
能力评估
Purpose & Capability
The SKILL.md explicitly instructs the agent to use the local Azure CLI (commands like `az account show`, `az login`, and many `az ...` queries). Despite that, the registry metadata declares no required binaries and no primary credential. A legitimate Azure CLI–based skill would normally declare the CLI dependency (and often note it needs Azure credentials); the omission is an inconsistency that could mislead users about what the skill will access.
Instruction Scope
The runtime instructions are narrowly scoped: they default to read‑only Azure CLI queries, require explicit confirmation before write/destructive actions, recommend dry‑runs when available, and do not instruct the agent to read arbitrary local files or call unexpected external endpoints. There is no prose directing exfiltration or broad system probing.
Install Mechanism
This is an instruction‑only skill with no install spec and no code files — low installation risk (nothing is downloaded or written to disk by the skill itself).
Credentials
The skill declares no required environment variables or primary credential, yet it will operate using whatever Azure authentication is present in the environment (az CLI access tokens, service principal credentials, or user login). That implicit access to Azure credentials and resources is not surfaced in the metadata; users should be aware the agent can run CLI commands that read or list sensitive cloud resources depending on the identity configured for az.
Persistence & Privilege
The skill does not request persistent/system‑wide privileges, is not always: true, and has no install steps that modify other skills or global agent settings. Autonomous invocation is allowed (the platform default), which increases blast radius if misused, but is not by itself a defect.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install azure-infra - 安装完成后,直接呼叫该 Skill 的名称或使用
/azure-infra触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
azure-infra 1.0.0 – Initial release
- Provides chat-based Azure infrastructure assistance using Azure CLI and portal context.
- Defaults to read-only queries; requires explicit user confirmation for any write or destructive actions.
- Supports querying, auditing, and monitoring resources like VMs, Storage, IAM, Functions, AKS, App Service, Key Vault, Azure Monitor, and billing.
- Follows strict safety rules: no secret logging, prefer dry-run, and confirmation for all changes.
- Handles multiple subscriptions and highlights the active subscription in results.
- Includes a task guide for common infrastructure and security queries.
元数据
常见问题
Azure Infra 是什么?
Chat-based Azure infrastructure assistance using Azure CLI and portal context. Use for querying, auditing, and monitoring Azure resources (VMs, Storage, IAM, Functions, AKS, App Service, Key Vault, Azure Monitor, billing, etc.), and for proposing safe changes with explicit confirmation before any write/destructive action. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 3080 次。
如何安装 Azure Infra?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install azure-infra」即可一键安装,无需额外配置。
Azure Infra 是免费的吗?
是的,Azure Infra 完全免费(开源免费),可自由下载、安装和使用。
Azure Infra 支持哪些平台?
Azure Infra 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Azure Infra?
由 bmdhodl(@bmdhodl)开发并维护,当前版本 v1.0.0。
推荐 Skills