Setup & Installation
npx skills add https://github.com/microsoft/skills --skill azure-keyvault-py
https://github.com/microsoft/skills/tree/main/.github/plugins/azure-sdk-python/skills/azure-keyvault-py
View on GitHubWhat This Skill Does
Azure Key Vault SDK for Python provides access to Azure Key Vault's secrets, cryptographic keys, and certificate management through three separate clients: SecretClient, KeyClient, and CertificateClient. It supports both sync and async usage, versioning, soft-delete recovery, and in-vault cryptographic operations like encrypt, decrypt, sign, and verify.
Storing secrets in Key Vault with RBAC and versioning removes credentials from code and config files, and vault-side cryptography means private keys never leave Azure's HSM boundary.
When to use it
- Retrieving database credentials at runtime instead of hardcoding them in config files
- Rotating API keys across multiple services by updating a single vault secret
- Signing payloads with an RSA key stored in Key Vault without exposing the private key
- Managing TLS certificate lifecycle for Azure-hosted applications
- Encrypting sensitive user data using a Key Vault-managed key before writing to storage