azure-compliance

Azure compliance scanning, Key Vault expiration auditing, and resource configuration validation.

microsoft/azure-skills|Updated Apr 8, 2026

Works with

Claude CodeCursorClineWindsurfCodexGoose

What it does

Runs azqr (Azure Quick Review) for comprehensive compliance assessment against best practices across subscriptions and resource groups
Monitors Key Vault keys, secrets, and certificates for expiration dates and identifies items without expiration policies
Detects orphaned, misconfigured, and non-compliant resources using Resource Graph queries
Classifies findings by priority (Critical,

Repository

microsoft/azure-skills

Last updated

Apr 8, 2026

Installation Guide

Select your AI agent

How to use azure-compliance on Cursor

AI-first code editor with Composer

Prerequisites

Before installing skills in Cursor, ensure your development environment meets these requirements:

›Cursor installed and configured on your machine
›Node.js 16+ with npm — verify with node --version
›Active project directory where you want to add azure-compliance

Run the install command

Execute the skills CLI command in your project's root directory to begin installation:

$npx skills add https://github.com/microsoft/azure-skills --skill azure-compliance

Fetches azure-compliance from microsoft/azure-skills and configures it for Cursor.

Select Cursor when prompted

The CLI shows a list of agents. Use arrow keys and space to select Cursor:

◆ Which agents do you want to install to?

│

│ ── Universal (.agents/skills) ────────────────

│ · Cline · Codex · Goose · Windsurf

│ ●Cursor(selected)

│ · Cursor · Aider · Continue

Verify installation

Confirm successful installation by checking the skill directory location:

.cursor/skills/azure-compliance

Restart Cursor to activate azure-compliance. Access via /azure-compliance in your agent's command palette.

⚠

Security Notice

We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.

Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.

›View source on GitHub ›Skills CLI docs ›About Cursor ›What are agent skills?

Documentation

List & Monetize Your Skill

Submit your Claude Code skill and start earning

Get started →

Use Cases

Task Automation & Efficiency

Automate repetitive workflows and reduce manual effort

Example

Generate reports, summarize documents, draft communications

✓

Save 3-5 hours per week on routine tasks

Knowledge Enhancement

Learn new skills, understand complex topics, get expert guidance

Example

Explain concepts, provide examples, suggest learning resources

✓

Accelerate learning and skill development by 2x

Quality Improvement

Enhance output quality through reviews, suggestions, and refinements

Example

Review drafts, suggest improvements, catch errors

✓

Improve work quality by 30-40% with less effort

Property

Details

Best for

Compliance scans, security audits, Key Vault expiration checks

Primary capabilities

Comprehensive Resources Assessment, Key Vault Expiration Monitoring

MCP tools

azqr, subscription and resource group listing, Key Vault item inspection

Skill Activation Triggers

Activate this skill when user wants to:

Check Azure compliance or best practices

Assess Azure resources for configuration issues

Run azqr or Azure Quick Review

Identify orphaned or misconfigured resources

Review Azure security posture

"Show me expired certificates/keys/secrets in my Key Vault"

"Check what's expiring in the next 30 days"

"Audit my Key Vault for compliance"

"Find secrets without expiration dates"

"Check certificate expiration dates"

Assessment

Reference

Comprehensive Compliance (azqr)

references/azure-quick-review.md

Key Vault Expiration

references/azure-keyvault-expiration-audit.md

Resource Graph Queries

references/azure-resource-graph.md

MCP Tools

Tool

Purpose

mcp_azure_mcp_extension_azqr

Run azqr compliance scans

mcp_azure_mcp_subscription_list

List available subscriptions

mcp_azure_mcp_group_list

List resource groups

keyvault_key_list

List all keys in vault

keyvault_key_get

Get key details including expiration

keyvault_secret_list

List all secrets in vault

keyvault_secret_get

Get secret details including expiration

keyvault_certificate_list

List all certificates in vault

keyvault_certificate_get

Get certificate details including expiration

Assessment Workflow

Select scope (subscription or resource group) for Comprehensive Resources Assessment.

Run azqr and capture output artifacts.

Analyze Scan Results and summarize findings and recommendations.

Review Key Vault Expiration Monitoring output for keys, secrets, and certificates.

Classify issues and propose remediation or fix steps for each finding.

Priority Classification

Priority

Guidance

Critical

Immediate remediation required for high-impact exposure

High

Resolve within days to reduce risk

Medium

Plan a resolution in the next sprint

Low

Track and fix during regular maintenance

Error

Message

Remediation

Authentication required

"Please login"

Run az login and retry

Access denied

"Forbidden"

Confirm permissions and fix role assignments

Missing resource

"Not found"

Verify subscription and resource group selection

azure-compliance

What it does

Category

Repository

Last updated

Installation Guide

How to use azure-compliance on Cursor

Prerequisites

Run the install command

Select Cursor when prompted

Verify installation

Security Notice

Documentation

List & Monetize Your Skill

Use Cases

Task Automation & Efficiency

Knowledge Enhancement

Quality Improvement

Install Skill

Azure Compliance & Security Auditing

Quick Reference

When to Use This Skill

Skill Activation Triggers

Prerequisites

Assessments

MCP Tools

Assessment Workflow

Priority Classification

Error Handling

Best Practices

SDK Quick References

Implementation Guide

Best Practices

When to Use This

Learning Path

Related Skills

azure-cost-optimization

azure-cloud-migrate

azure-storage

microsoft-foundry

performing-cryptographic-audit-of-application

accessibility-compliance

Reviews

Discussion