feat: Add Official Microsoft & Gemini Skills (845+ Total)
🚀 Impact Significantly expands the capabilities of **Antigravity Awesome Skills** by integrating official skill collections from **Microsoft** and **Google Gemini**. This update increases the total skill count to **845+**, making the library even more comprehensive for AI coding assistants. ✨ Key Changes 1. New Official Skills - **Microsoft Skills**: Added a massive collection of official skills from [microsoft/skills](https://github.com/microsoft/skills). - Includes Azure, .NET, Python, TypeScript, and Semantic Kernel skills. - Preserves the original directory structure under `skills/official/microsoft/`. - Includes plugin skills from the `.github/plugins` directory. - **Gemini Skills**: Added official Gemini API development skills under `skills/gemini-api-dev/`. 2. New Scripts & Tooling - **`scripts/sync_microsoft_skills.py`**: A robust synchronization script that: - Clones the official Microsoft repository. - Preserves the original directory heirarchy. - Handles symlinks and plugin locations. - Generates attribution metadata. - **`scripts/tests/inspect_microsoft_repo.py`**: Debug tool to inspect the remote repository structure. - **`scripts/tests/test_comprehensive_coverage.py`**: Verification script to ensure 100% of skills are captured during sync. 3. Core Improvements - **`scripts/generate_index.py`**: Enhanced frontmatter parsing to safely handle unquoted values containing `@` symbols and commas (fixing issues with some Microsoft skill descriptions). - **`package.json`**: Added `sync:microsoft` and `sync:all-official` scripts for easy maintenance. 4. Documentation - Updated `README.md` to reflect the new skill counts (845+) and added Microsoft/Gemini to the provider list. - Updated `CATALOG.md` and `skills_index.json` with the new skills. 🧪 Verification - Ran `scripts/tests/test_comprehensive_coverage.py` to verify all Microsoft skills are detected. - Validated `generate_index.py` fixes by successfully indexing the new skills.
This commit is contained in:
Ahmed Rehan
@@ -0,0 +1,115 @@
|
||||
---
|
||||
name: azure-identity-rust
|
||||
description: |
|
||||
Azure Identity SDK for Rust authentication. Use for DeveloperToolsCredential, ManagedIdentityCredential, ClientSecretCredential, and token-based authentication.
|
||||
Triggers: "azure-identity", "DeveloperToolsCredential", "authentication rust", "managed identity rust", "credential rust".
|
||||
package: azure_identity
|
||||
---
|
||||
|
||||
# Azure Identity SDK for Rust
|
||||
|
||||
Authentication library for Azure SDK clients using Microsoft Entra ID (formerly Azure AD).
|
||||
|
||||
## Installation
|
||||
|
||||
```sh
|
||||
cargo add azure_identity
|
||||
```
|
||||
|
||||
## Environment Variables
|
||||
|
||||
```bash
|
||||
# Service Principal (for production/CI)
|
||||
AZURE_TENANT_ID=<your-tenant-id>
|
||||
AZURE_CLIENT_ID=<your-client-id>
|
||||
AZURE_CLIENT_SECRET=<your-client-secret>
|
||||
|
||||
# User-assigned Managed Identity (optional)
|
||||
AZURE_CLIENT_ID=<managed-identity-client-id>
|
||||
```
|
||||
|
||||
## DeveloperToolsCredential
|
||||
|
||||
The recommended credential for local development. Tries developer tools in order (Azure CLI, Azure Developer CLI):
|
||||
|
||||
```rust
|
||||
use azure_identity::DeveloperToolsCredential;
|
||||
use azure_security_keyvault_secrets::SecretClient;
|
||||
|
||||
let credential = DeveloperToolsCredential::new(None)?;
|
||||
let client = SecretClient::new(
|
||||
"https://my-vault.vault.azure.net/",
|
||||
credential.clone(),
|
||||
None,
|
||||
)?;
|
||||
```
|
||||
|
||||
### Credential Chain Order
|
||||
|
||||
| Order | Credential | Environment |
|
||||
|-------|-----------|-------------|
|
||||
| 1 | AzureCliCredential | `az login` |
|
||||
| 2 | AzureDeveloperCliCredential | `azd auth login` |
|
||||
|
||||
## Credential Types
|
||||
|
||||
| Credential | Usage |
|
||||
|------------|-------|
|
||||
| `DeveloperToolsCredential` | Local development - tries CLI tools |
|
||||
| `ManagedIdentityCredential` | Azure VMs, App Service, Functions, AKS |
|
||||
| `WorkloadIdentityCredential` | Kubernetes workload identity |
|
||||
| `ClientSecretCredential` | Service principal with secret |
|
||||
| `ClientCertificateCredential` | Service principal with certificate |
|
||||
| `AzureCliCredential` | Direct Azure CLI auth |
|
||||
| `AzureDeveloperCliCredential` | Direct azd CLI auth |
|
||||
| `AzurePipelinesCredential` | Azure Pipelines service connection |
|
||||
| `ClientAssertionCredential` | Custom assertions (federated identity) |
|
||||
|
||||
## ManagedIdentityCredential
|
||||
|
||||
For Azure-hosted resources:
|
||||
|
||||
```rust
|
||||
use azure_identity::ManagedIdentityCredential;
|
||||
|
||||
// System-assigned managed identity
|
||||
let credential = ManagedIdentityCredential::new(None)?;
|
||||
|
||||
// User-assigned managed identity
|
||||
let options = ManagedIdentityCredentialOptions {
|
||||
client_id: Some("<user-assigned-mi-client-id>".into()),
|
||||
..Default::default()
|
||||
};
|
||||
let credential = ManagedIdentityCredential::new(Some(options))?;
|
||||
```
|
||||
|
||||
## ClientSecretCredential
|
||||
|
||||
For service principal with secret:
|
||||
|
||||
```rust
|
||||
use azure_identity::ClientSecretCredential;
|
||||
|
||||
let credential = ClientSecretCredential::new(
|
||||
"<tenant-id>".into(),
|
||||
"<client-id>".into(),
|
||||
"<client-secret>".into(),
|
||||
None,
|
||||
)?;
|
||||
```
|
||||
|
||||
## Best Practices
|
||||
|
||||
1. **Use `DeveloperToolsCredential` for local dev** — automatically picks up Azure CLI
|
||||
2. **Use `ManagedIdentityCredential` in production** — no secrets to manage
|
||||
3. **Clone credentials** — credentials are `Arc`-wrapped and cheap to clone
|
||||
4. **Reuse credential instances** — same credential can be used with multiple clients
|
||||
5. **Use `tokio` feature** — `cargo add azure_identity --features tokio`
|
||||
|
||||
## Reference Links
|
||||
|
||||
| Resource | Link |
|
||||
|----------|------|
|
||||
| API Reference | https://docs.rs/azure_identity |
|
||||
| Source Code | https://github.com/Azure/azure-sdk-for-rust/tree/main/sdk/identity/azure_identity |
|
||||
| crates.io | https://crates.io/crates/azure_identity |
|
||||
@@ -0,0 +1,177 @@
|
||||
---
|
||||
name: azure-keyvault-certificates-rust
|
||||
description: |
|
||||
Azure Key Vault Certificates SDK for Rust. Use for creating, importing, and managing certificates.
|
||||
Triggers: "keyvault certificates rust", "CertificateClient rust", "create certificate rust", "import certificate rust".
|
||||
package: azure_security_keyvault_certificates
|
||||
---
|
||||
|
||||
# Azure Key Vault Certificates SDK for Rust
|
||||
|
||||
Client library for Azure Key Vault Certificates — secure storage and management of certificates.
|
||||
|
||||
## Installation
|
||||
|
||||
```sh
|
||||
cargo add azure_security_keyvault_certificates azure_identity
|
||||
```
|
||||
|
||||
## Environment Variables
|
||||
|
||||
```bash
|
||||
AZURE_KEYVAULT_URL=https://<vault-name>.vault.azure.net/
|
||||
```
|
||||
|
||||
## Authentication
|
||||
|
||||
```rust
|
||||
use azure_identity::DeveloperToolsCredential;
|
||||
use azure_security_keyvault_certificates::CertificateClient;
|
||||
|
||||
let credential = DeveloperToolsCredential::new(None)?;
|
||||
let client = CertificateClient::new(
|
||||
"https://<vault-name>.vault.azure.net/",
|
||||
credential.clone(),
|
||||
None,
|
||||
)?;
|
||||
```
|
||||
|
||||
## Core Operations
|
||||
|
||||
### Get Certificate
|
||||
|
||||
```rust
|
||||
use azure_core::base64;
|
||||
|
||||
let certificate = client
|
||||
.get_certificate("certificate-name", None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
|
||||
println!(
|
||||
"Thumbprint: {:?}",
|
||||
certificate.x509_thumbprint.map(base64::encode_url_safe)
|
||||
);
|
||||
```
|
||||
|
||||
### Create Certificate
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_certificates::models::{
|
||||
CreateCertificateParameters, CertificatePolicy,
|
||||
IssuerParameters, X509CertificateProperties,
|
||||
};
|
||||
|
||||
let policy = CertificatePolicy {
|
||||
issuer_parameters: Some(IssuerParameters {
|
||||
name: Some("Self".into()),
|
||||
..Default::default()
|
||||
}),
|
||||
x509_certificate_properties: Some(X509CertificateProperties {
|
||||
subject: Some("CN=example.com".into()),
|
||||
..Default::default()
|
||||
}),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let params = CreateCertificateParameters {
|
||||
certificate_policy: Some(policy),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let operation = client
|
||||
.create_certificate("cert-name", params.try_into()?, None)
|
||||
.await?;
|
||||
```
|
||||
|
||||
### Import Certificate
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_certificates::models::ImportCertificateParameters;
|
||||
|
||||
let params = ImportCertificateParameters {
|
||||
base64_encoded_certificate: Some(base64_cert_data),
|
||||
password: Some("optional-password".into()),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let certificate = client
|
||||
.import_certificate("cert-name", params.try_into()?, None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
### Delete Certificate
|
||||
|
||||
```rust
|
||||
client.delete_certificate("certificate-name", None).await?;
|
||||
```
|
||||
|
||||
### List Certificates
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_certificates::ResourceExt;
|
||||
use futures::TryStreamExt;
|
||||
|
||||
let mut pager = client.list_certificate_properties(None)?.into_stream();
|
||||
while let Some(cert) = pager.try_next().await? {
|
||||
let name = cert.resource_id()?.name;
|
||||
println!("Certificate: {}", name);
|
||||
}
|
||||
```
|
||||
|
||||
### Get Certificate Policy
|
||||
|
||||
```rust
|
||||
let policy = client
|
||||
.get_certificate_policy("certificate-name", None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
### Update Certificate Policy
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_certificates::models::UpdateCertificatePolicyParameters;
|
||||
|
||||
let params = UpdateCertificatePolicyParameters {
|
||||
// Update policy properties
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
client
|
||||
.update_certificate_policy("cert-name", params.try_into()?, None)
|
||||
.await?;
|
||||
```
|
||||
|
||||
## Certificate Lifecycle
|
||||
|
||||
1. **Create** — generates new certificate with policy
|
||||
2. **Import** — import existing PFX/PEM certificate
|
||||
3. **Get** — retrieve certificate (public key only)
|
||||
4. **Update** — modify certificate properties
|
||||
5. **Delete** — soft delete (recoverable)
|
||||
6. **Purge** — permanent deletion
|
||||
|
||||
## Best Practices
|
||||
|
||||
1. **Use Entra ID auth** — `DeveloperToolsCredential` for dev
|
||||
2. **Use managed certificates** — auto-renewal with supported issuers
|
||||
3. **Set proper validity period** — balance security and maintenance
|
||||
4. **Use certificate policies** — define renewal and key properties
|
||||
5. **Monitor expiration** — set up alerts for expiring certificates
|
||||
6. **Enable soft delete** — required for production vaults
|
||||
|
||||
## RBAC Permissions
|
||||
|
||||
Assign these Key Vault roles:
|
||||
- `Key Vault Certificates Officer` — full CRUD on certificates
|
||||
- `Key Vault Reader` — read certificate metadata
|
||||
|
||||
## Reference Links
|
||||
|
||||
| Resource | Link |
|
||||
|----------|------|
|
||||
| API Reference | https://docs.rs/azure_security_keyvault_certificates |
|
||||
| Source Code | https://github.com/Azure/azure-sdk-for-rust/tree/main/sdk/keyvault/azure_security_keyvault_certificates |
|
||||
| crates.io | https://crates.io/crates/azure_security_keyvault_certificates |
|
||||
@@ -0,0 +1,167 @@
|
||||
---
|
||||
name: azure-keyvault-keys-rust
|
||||
description: |
|
||||
Azure Key Vault Keys SDK for Rust. Use for creating, managing, and using cryptographic keys.
|
||||
Triggers: "keyvault keys rust", "KeyClient rust", "create key rust", "encrypt rust", "sign rust".
|
||||
package: azure_security_keyvault_keys
|
||||
---
|
||||
|
||||
# Azure Key Vault Keys SDK for Rust
|
||||
|
||||
Client library for Azure Key Vault Keys — secure storage and management of cryptographic keys.
|
||||
|
||||
## Installation
|
||||
|
||||
```sh
|
||||
cargo add azure_security_keyvault_keys azure_identity
|
||||
```
|
||||
|
||||
## Environment Variables
|
||||
|
||||
```bash
|
||||
AZURE_KEYVAULT_URL=https://<vault-name>.vault.azure.net/
|
||||
```
|
||||
|
||||
## Authentication
|
||||
|
||||
```rust
|
||||
use azure_identity::DeveloperToolsCredential;
|
||||
use azure_security_keyvault_keys::KeyClient;
|
||||
|
||||
let credential = DeveloperToolsCredential::new(None)?;
|
||||
let client = KeyClient::new(
|
||||
"https://<vault-name>.vault.azure.net/",
|
||||
credential.clone(),
|
||||
None,
|
||||
)?;
|
||||
```
|
||||
|
||||
## Key Types
|
||||
|
||||
| Type | Description |
|
||||
|------|-------------|
|
||||
| RSA | RSA keys (2048, 3072, 4096 bits) |
|
||||
| EC | Elliptic curve keys (P-256, P-384, P-521) |
|
||||
| RSA-HSM | HSM-protected RSA keys |
|
||||
| EC-HSM | HSM-protected EC keys |
|
||||
|
||||
## Core Operations
|
||||
|
||||
### Get Key
|
||||
|
||||
```rust
|
||||
let key = client
|
||||
.get_key("key-name", None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
|
||||
println!("Key ID: {:?}", key.key.as_ref().map(|k| &k.kid));
|
||||
```
|
||||
|
||||
### Create Key
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_keys::models::{CreateKeyParameters, KeyType};
|
||||
|
||||
let params = CreateKeyParameters {
|
||||
kty: KeyType::Rsa,
|
||||
key_size: Some(2048),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let key = client
|
||||
.create_key("key-name", params.try_into()?, None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
### Create EC Key
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_keys::models::{CreateKeyParameters, KeyType, CurveName};
|
||||
|
||||
let params = CreateKeyParameters {
|
||||
kty: KeyType::Ec,
|
||||
curve: Some(CurveName::P256),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let key = client
|
||||
.create_key("ec-key", params.try_into()?, None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
### Delete Key
|
||||
|
||||
```rust
|
||||
client.delete_key("key-name", None).await?;
|
||||
```
|
||||
|
||||
### List Keys
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_keys::ResourceExt;
|
||||
use futures::TryStreamExt;
|
||||
|
||||
let mut pager = client.list_key_properties(None)?.into_stream();
|
||||
while let Some(key) = pager.try_next().await? {
|
||||
let name = key.resource_id()?.name;
|
||||
println!("Key: {}", name);
|
||||
}
|
||||
```
|
||||
|
||||
### Backup Key
|
||||
|
||||
```rust
|
||||
let backup = client.backup_key("key-name", None).await?;
|
||||
// Store backup.value safely
|
||||
```
|
||||
|
||||
### Restore Key
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_keys::models::RestoreKeyParameters;
|
||||
|
||||
let params = RestoreKeyParameters {
|
||||
key_bundle_backup: backup_bytes,
|
||||
};
|
||||
|
||||
client.restore_key(params.try_into()?, None).await?;
|
||||
```
|
||||
|
||||
## Cryptographic Operations
|
||||
|
||||
Key Vault can perform crypto operations without exposing the private key:
|
||||
|
||||
```rust
|
||||
// For cryptographic operations, use the key's operations
|
||||
// Available operations depend on key type and permissions:
|
||||
// - encrypt/decrypt (RSA)
|
||||
// - sign/verify (RSA, EC)
|
||||
// - wrapKey/unwrapKey (RSA)
|
||||
```
|
||||
|
||||
## Best Practices
|
||||
|
||||
1. **Use Entra ID auth** — `DeveloperToolsCredential` for dev, `ManagedIdentityCredential` for production
|
||||
2. **Use HSM keys for sensitive workloads** — hardware-protected keys
|
||||
3. **Use EC for signing** — more efficient than RSA
|
||||
4. **Use RSA for encryption** — when encrypting data
|
||||
5. **Backup keys** — for disaster recovery
|
||||
6. **Enable soft delete** — required for production vaults
|
||||
7. **Use key rotation** — create new versions periodically
|
||||
|
||||
## RBAC Permissions
|
||||
|
||||
Assign these Key Vault roles:
|
||||
- `Key Vault Crypto User` — use keys for crypto operations
|
||||
- `Key Vault Crypto Officer` — full CRUD on keys
|
||||
|
||||
## Reference Links
|
||||
|
||||
| Resource | Link |
|
||||
|----------|------|
|
||||
| API Reference | https://docs.rs/azure_security_keyvault_keys |
|
||||
| Source Code | https://github.com/Azure/azure-sdk-for-rust/tree/main/sdk/keyvault/azure_security_keyvault_keys |
|
||||
| crates.io | https://crates.io/crates/azure_security_keyvault_keys |
|
||||
@@ -0,0 +1,142 @@
|
||||
---
|
||||
name: azure-keyvault-secrets-rust
|
||||
description: |
|
||||
Azure Key Vault Secrets SDK for Rust. Use for storing and retrieving secrets, passwords, and API keys.
|
||||
Triggers: "keyvault secrets rust", "SecretClient rust", "get secret rust", "set secret rust".
|
||||
package: azure_security_keyvault_secrets
|
||||
---
|
||||
|
||||
# Azure Key Vault Secrets SDK for Rust
|
||||
|
||||
Client library for Azure Key Vault Secrets — secure storage for passwords, API keys, and other secrets.
|
||||
|
||||
## Installation
|
||||
|
||||
```sh
|
||||
cargo add azure_security_keyvault_secrets azure_identity
|
||||
```
|
||||
|
||||
## Environment Variables
|
||||
|
||||
```bash
|
||||
AZURE_KEYVAULT_URL=https://<vault-name>.vault.azure.net/
|
||||
```
|
||||
|
||||
## Authentication
|
||||
|
||||
```rust
|
||||
use azure_identity::DeveloperToolsCredential;
|
||||
use azure_security_keyvault_secrets::SecretClient;
|
||||
|
||||
let credential = DeveloperToolsCredential::new(None)?;
|
||||
let client = SecretClient::new(
|
||||
"https://<vault-name>.vault.azure.net/",
|
||||
credential.clone(),
|
||||
None,
|
||||
)?;
|
||||
```
|
||||
|
||||
## Core Operations
|
||||
|
||||
### Get Secret
|
||||
|
||||
```rust
|
||||
let secret = client
|
||||
.get_secret("secret-name", None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
|
||||
println!("Secret value: {:?}", secret.value);
|
||||
```
|
||||
|
||||
### Set Secret
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_secrets::models::SetSecretParameters;
|
||||
|
||||
let params = SetSecretParameters {
|
||||
value: Some("secret-value".into()),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let secret = client
|
||||
.set_secret("secret-name", params.try_into()?, None)
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
### Update Secret Properties
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_secrets::models::UpdateSecretPropertiesParameters;
|
||||
use std::collections::HashMap;
|
||||
|
||||
let params = UpdateSecretPropertiesParameters {
|
||||
content_type: Some("text/plain".into()),
|
||||
tags: Some(HashMap::from([("env".into(), "prod".into())])),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
client
|
||||
.update_secret_properties("secret-name", params.try_into()?, None)
|
||||
.await?;
|
||||
```
|
||||
|
||||
### Delete Secret
|
||||
|
||||
```rust
|
||||
client.delete_secret("secret-name", None).await?;
|
||||
```
|
||||
|
||||
### List Secrets
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_secrets::ResourceExt;
|
||||
use futures::TryStreamExt;
|
||||
|
||||
let mut pager = client.list_secret_properties(None)?.into_stream();
|
||||
while let Some(secret) = pager.try_next().await? {
|
||||
let name = secret.resource_id()?.name;
|
||||
println!("Secret: {}", name);
|
||||
}
|
||||
```
|
||||
|
||||
### Get Specific Version
|
||||
|
||||
```rust
|
||||
use azure_security_keyvault_secrets::models::SecretClientGetSecretOptions;
|
||||
|
||||
let options = SecretClientGetSecretOptions {
|
||||
secret_version: Some("version-id".into()),
|
||||
..Default::default()
|
||||
};
|
||||
|
||||
let secret = client
|
||||
.get_secret("secret-name", Some(options))
|
||||
.await?
|
||||
.into_model()?;
|
||||
```
|
||||
|
||||
## Best Practices
|
||||
|
||||
1. **Use Entra ID auth** — `DeveloperToolsCredential` for dev, `ManagedIdentityCredential` for production
|
||||
2. **Use `into_model()?`** — to deserialize responses
|
||||
3. **Use `ResourceExt` trait** — for extracting names from IDs
|
||||
4. **Handle soft delete** — deleted secrets can be recovered within retention period
|
||||
5. **Set content type** — helps identify secret format
|
||||
6. **Use tags** — for organizing and filtering secrets
|
||||
7. **Version secrets** — new values create new versions automatically
|
||||
|
||||
## RBAC Permissions
|
||||
|
||||
Assign these Key Vault roles:
|
||||
- `Key Vault Secrets User` — get and list
|
||||
- `Key Vault Secrets Officer` — full CRUD
|
||||
|
||||
## Reference Links
|
||||
|
||||
| Resource | Link |
|
||||
|----------|------|
|
||||
| API Reference | https://docs.rs/azure_security_keyvault_secrets |
|
||||
| Source Code | https://github.com/Azure/azure-sdk-for-rust/tree/main/sdk/keyvault/azure_security_keyvault_secrets |
|
||||
| crates.io | https://crates.io/crates/azure_security_keyvault_secrets |
|
||||
Reference in New Issue
Block a user