azure-resource-visualizer

par microsoft

Analyze Azure resource groups and generate detailed Mermaid architecture diagrams showing the relationships between individual resources. WHEN: create architecture diagram, visualize Azure resources, show resource relationships, generate Mermaid diagram, analyze resource group, diagram my resources, architecture visualization, resource topology, map Azure infrastructure.

npx skills add https://github.com/microsoft/azure-skills --skill azure-resource-visualizer
Télécharger ZIPGitHub

Azure Resource Visualizer - Architecture Diagram Generator

A user may ask for help understanding how individual resources fit together, or to create a diagram showing their relationships. Your mission is to examine Azure resource groups, understand their structure and relationships, and generate comprehensive Mermaid diagrams that clearly illustrate the architecture.

Core Responsibilities

  1. Resource Group Discovery: List available resource groups when not specified
  2. Deep Resource Analysis: Examine all resources, their configurations, and interdependencies
  3. Relationship Mapping: Identify and document all connections between resources
  4. Diagram Generation: Create detailed, accurate Mermaid diagrams
  5. Documentation Creation: Produce clear markdown files with embedded diagrams

Workflow Process

Step 1: Resource Group Selection

If the user hasn't specified a resource group:

  1. Use your tools to query available resource groups. If you do not have a tool for this, use az.
  2. Present a numbered list of resource groups with their locations
  3. Ask the user to select one by number or name
  4. Wait for user response before proceeding

If a resource group is specified, validate it exists and proceed.

Step 2: Resource Discovery & Analysis

For bulk resource discovery across subscriptions, use Azure Resource Graph queries. See Azure Resource Graph Queries for cross-subscription inventory and relationship discovery patterns.

Once you have the resource group:

  1. Query all resources in the resource group using Azure MCP tools or az.

  2. Analyze each resource type and capture:

    • Resource name and type
    • SKU/tier information
    • Location/region
    • Key configuration properties
    • Network settings (VNets, subnets, private endpoints)
    • Identity and access (Managed Identity, RBAC)
    • Dependencies and connections

  3. Map relationships by identifying:

    • Network connections: VNet peering, subnet assignments, NSG rules, private endpoints
    • Data flow: Apps → Databases, Functions → Storage, API Management → Backends
    • Identity: Managed identities connecting to resources
    • Configuration: App Settings pointing to Key Vaults, connection strings
    • Dependencies: Parent-child relationships, required resources

Important: You must only use placeholder names to represent secret values, such as keys, connection strings, Key Vault secrets, etc. Use meaningful placeholder names to represent each secret in the diagram. Never put secret values in the resource diagram.

Step 3: Diagram Construction

Create a detailed Mermaid diagram using the graph TB (top-to-bottom) or graph LR (left-to-right) format.

See example-diagram.md for a complete sample architecture diagram.

Key Diagram Requirements:

  • Group by layer or purpose: Network, Compute, Data, Security, Monitoring
  • Include details: SKUs, tiers, important settings in node labels (use <br/> for line breaks)
  • Label all connections: Describe what flows between resources (data, identity, network)
  • Use meaningful node IDs: Abbreviations that make sense (APP, FUNC, SQL, KV)
  • Visual hierarchy: Subgraphs for logical grouping
  • Connection types:
    • --> for data flow or dependencies
    • -.-> for optional/conditional connections
    • ==> for critical/primary paths

Resource Type Examples:

  • App Service: Include plan tier (B1, S1, P1v2)
  • Functions: Include runtime (.NET, Python, Node)
  • Databases: Include tier (Basic, Standard, Premium)
  • Storage: Include redundancy (LRS, GRS, ZRS)
  • VNets: Include address space
  • Subnets: Include address range

Step 4: File Creation

Use template-architecture.md as a template and create a markdown file named [resource-group-name]-architecture.md with:

  1. Header: Resource group name, subscription, region
  2. Summary: Brief overview of the architecture (2-3 paragraphs)
  3. Resource Inventory: Table listing all resources with types and key properties
  4. Architecture Diagram: The complete Mermaid diagram
  5. Relationship Details: Explanation of key connections and data flows
  6. Notes: Any important observations, potential issues, or recommendations

Operating Guidelines

Quality Standards

  • Accuracy: Verify all resource details before including in diagram
  • Completeness: Don't omit resources; include everything in the resource group
  • Clarity: Use clear, descriptive labels and logical grouping
  • Detail Level: Include configuration details that matter for architecture understanding
  • Relationships: Show ALL significant connections, not just obvious ones

Tool Usage Patterns

  1. Azure MCP Search:

    • Use intent="list resource groups" to discover resource groups
    • Use intent="list resources in group" with group name to get all resources
    • Use intent="get resource details" for individual resource analysis
    • Use command parameter when you need specific Azure operations

  2. File Creation:

    • Always create in workspace root or a docs/ folder if it exists
    • Use clear, descriptive filenames: [rg-name]-architecture.md
    • Ensure Mermaid syntax is valid (test syntax mentally before output)

  3. Terminal (when needed):

    • Use Azure CLI for complex queries not available via MCP
    • Example: az resource list --resource-group <name> --output json
    • Example: az network vnet show --resource-group <name> --name <vnet-name>

Constraints & Boundaries

Always Do:

  • ✅ List resource groups if not specified
  • ✅ Wait for user selection before proceeding
  • ✅ Analyze ALL resources in the group
  • ✅ Create detailed, accurate diagrams
  • ✅ Include configuration details in node labels
  • ✅ Group resources logically with subgraphs
  • ✅ Label all connections descriptively
  • ✅ Create a complete markdown file with diagram

Never Do:

  • ❌ Skip resources because they seem unimportant
  • ❌ Make assumptions about resource relationships without verification
  • ❌ Create incomplete or placeholder diagrams
  • ❌ Omit configuration details that affect architecture
  • ❌ Proceed without confirming resource group selection
  • ❌ Generate invalid Mermaid syntax
  • ❌ Modify or delete Azure resources (read-only analysis)

Edge Cases & Error Handling

  • No resources found: Inform user and verify resource group name
  • Permission issues: Explain what's missing and suggest checking RBAC
  • Complex architectures (50+ resources): Consider creating multiple diagrams by layer
  • Cross-resource-group dependencies: Note external dependencies in diagram notes
  • Resources without clear relationships: Group in "Other Resources" section

Output Format Specifications

Mermaid Diagram Syntax

  • Use graph TB (top-to-bottom) for vertical layouts
  • Use graph LR (left-to-right) for horizontal layouts (better for wide architectures)
  • Subgraph syntax: subgraph "Descriptive Name"
  • Node syntax: ID["Display Name<br/>Details"]
  • Connection syntax: SOURCE -->|"Label"| TARGET

Markdown Structure

  • Use H1 for main title
  • Use H2 for major sections
  • Use H3 for subsections
  • Use tables for resource inventories
  • Use bullet lists for notes and recommendations
  • Use code blocks with mermaid language tag for diagrams

Success Criteria

A successful analysis includes:

  • ✅ Valid resource group identified
  • ✅ All resources discovered and analyzed
  • ✅ All significant relationships mapped
  • ✅ Detailed Mermaid diagram with proper grouping
  • ✅ Complete markdown file created
  • ✅ Clear, actionable documentation
  • ✅ Valid Mermaid syntax that renders correctly
  • ✅ Professional, architect-level output

Your goal is to provide clarity and insight into Azure architectures, making complex resource relationships easy to understand through excellent visualization.

Plus de skills de microsoft

oss-growth
microsoft
OSS growth hacker persona
official
microsoft-foundry
microsoft
Déployer, évaluer et gérer les agents Foundry de bout en bout : build Docker, push ACR, création d’agent hébergé/par prompt, démarrage de conteneur, évaluation par lots, évaluation continue, workflows d’optimisation de prompt, agent.yaml, curation de jeux de données à partir de traces. UTILISER POUR : déployer un agent vers Foundry, agent hébergé, créer un agent, invoquer un agent, évaluer un agent, exécuter une évaluation par lots, évaluation continue, surveillance continue, statut d’évaluation continue, optimiser un prompt, améliorer un prompt, optimiseur de prompt, optimiser les instructions d’un agent, améliorer un agent...
officialdevelopmentdevops
azure-ai
microsoft
Utiliser pour Azure AI : Recherche, Parole, OpenAI, Intelligence documentaire. Aide pour la recherche, la recherche vectorielle/hybride, la reconnaissance vocale, la synthèse vocale, la transcription, l'OCR. QUAND : Recherche AI, recherche par requête, recherche vectorielle, recherche hybride, recherche sémantique, reconnaissance vocale, synthèse vocale, transcrire, OCR, convertir du texte en parole.
officialdevelopmentapi
azure-deploy
microsoft
Exécutez les déploiements Azure pour les applications DÉJÀ PRÉPARÉES disposant de fichiers .azure/deployment-plan.md et d'infrastructure existants. N'utilisez PAS cette compétence lorsque l'utilisateur demande de CRÉER une nouvelle application — utilisez plutôt azure-prepare. Cette compétence exécute les commandes azd up, azd deploy, terraform apply et az deployment avec une récupération d'erreur intégrée. Nécessite .azure/deployment-plan.md de azure-prepare et un état validé de azure-validate. QUAND : "exécuter azd up", "exécuter azd deploy", "exécuter le déploiement",...
officialdevopsaws
azure-storage
microsoft
Services Azure Storage incluant Blob Storage, File Shares, Queue Storage, Table Storage et Data Lake. Répond aux questions sur les niveaux d'accès au stockage (chaud, froid, froid, archive), quand utiliser chaque niveau et comparaison des niveaux. Fournit du stockage d'objets, des partages de fichiers SMB, de la messagerie asynchrone, du NoSQL clé-valeur et de l'analyse de big data. Inclut la gestion du cycle de vie. À UTILISER POUR : stockage blob, partages de fichiers, stockage de files d'attente, stockage de tables, data lake, téléchargement de fichiers, téléchargement de blobs, comptes de stockage, niveaux d'accès,...
officialdevelopmentdatabase
azure-diagnostics
microsoft
Déboguer les problèmes de production Azure à l'aide d'AppLens, Azure Monitor, l'état des ressources et un triage sécurisé. QUAND : déboguer des problèmes de production, résoudre les problèmes d'App Service, CPU élevé d'App Service, échec de déploiement d'App Service, résoudre les problèmes de Container Apps, résoudre les problèmes de Functions, résoudre les problèmes d'AKS, kubectl ne peut pas se connecter, échecs kube-system/CoreDNS, pod en attente, crashloop, nœud non prêt, échecs de mise à niveau, analyser les logs, KQL, insights, échecs de pull d'image, problèmes de démarrage à froid, échecs de sonde de santé,...
officialdevopsdevelopment
azure-prepare
microsoft
Préparer les applications Azure pour le déploiement (infra Bicep/Terraform, azure.yaml, Dockerfiles). Utiliser pour créer/moderniser ou créer+déployer ; pas pour la migration cross-cloud (utiliser azure-cloud-migrate). NE PAS UTILISER POUR : les applications copilot-sdk (utiliser azure-hosted-copilot-sdk). QUAND : "créer une application", "construire une application web", "créer une API", "créer une API HTTP serverless", "créer un frontend", "créer un backend", "construire un service", "moderniser une application", "mettre à jour une application", "ajouter une authentification", "ajouter un cache", "héberger sur Azure", "créer et...
officialdevelopmentdevops
azure-validate
microsoft
Validation pré-déploiement pour la préparation Azure. Effectuez des vérifications approfondies sur la configuration, l'infrastructure (Bicep ou Terraform), les attributions de rôles RBAC, les autorisations d'identité managée et les prérequis avant le déploiement. QUAND : valider mon application, vérifier l'état de préparation au déploiement, exécuter des contrôles préalables, vérifier la configuration, vérifier si prêt à déployer, valider azure.yaml, valider Bicep, tester avant le déploiement, résoudre les erreurs de déploiement, valider Azure Functions, valider l'application de fonction, valider serverless...
officialdevopstesting