SharePoint Audit Skill
When to use
- •A user needs to audit SharePoint Online permissions for one site or a CSV-defined batch.
- •The operator can run PowerShell 7.4+, Python 3.10+, and PnP.PowerShell locally.
What to do
- •Ask for: Tenant ID, App (Client) ID, PFX path, internal domains, site URL or CSV, and confirm
PFX_PASSis set. - •Run:
- •
pwsh ./sharepoint-audit-agent/agent/powershell/Install-Modules.ps1 - •
python ./sharepoint-audit-agent/agent/python/audit_agent.py … --output ./runs
- •
- •On success, show
./runs/<timestamp>/site-*/report.htmland remind the user that the file contains sensitive data.
Rules
- •Only run local commands. Do not fetch from the internet beyond module installs.
- •Never echo secrets. Read PFX password from env var.
- •Default Sites.Selected scope to Read; only pass
--sites-selected-permission Writeif the user explicitly authorizes it.