Implement Azure IaC generator with Bicep and diagram support

[Ba4bes]

Description

Created to replace #1892 was messed up with some creative use of git.

Adds azure-iac-generator, to create bicep templates based on either draw.io diagrams or based on the live Azure environment

Checklist

• Tests pass locally (cd tests && npm test)
• If modifying skill descriptions: verified routing correctness with integration tests (npm run test:skills:integration -- <skill>)
• If modifying skill USE FOR / DO NOT USE FOR / PREFER OVER clauses: confirmed no routing regressions for competing skills
• Version bumped in skill frontmatter (if skill files changed)

Related Issues

[Copilot]

Pull request overview

Adds a new azure-iac-generator skill to generate modular Bicep templates from either (1) a live Azure environment or (2) a Draw.io diagram, along with unit/trigger/integration tests and supporting reference docs.

Changes:

• Introduces the azure-iac-generator skill with routing and required guidance for Azure→Bicep and Diagram→Bicep workflows.
• Adds a comprehensive reference set (resource extraction maps, workflows, verification rules, diagram parsing, etc.).
• Adds unit tests, trigger tests (with snapshots), and integration tests; registers the skill in tests/skills.json.

Reviewed changes

Copilot reviewed 23 out of 23 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
tests/skills.json	Registers the new skill and includes it in the integration test schedule.
tests/azure-iac-generator/unit.test.ts	Validates SKILL.md metadata/frontmatter and required content expectations for the new skill.
tests/azure-iac-generator/triggers.test.ts	Adds trigger coverage for positive/negative prompts plus snapshot assertions.
tests/azure-iac-generator/integration.test.ts	Adds end-to-end integration coverage for invocation rate and basic output artifacts.
tests/azure-iac-generator/snapshots/triggers.test.ts.snap	Snapshots expected extracted keywords/description keyword extraction for routing stability.
plugin/skills/azure-iac-generator/SKILL.md	New skill definition, routing, required references, output structure, and error handling.
plugin/skills/azure-iac-generator/references/version-currency.md	Rules for API/runtime version currency in generated IaC.
plugin/skills/azure-iac-generator/references/resource-configs-platform.md	Platform/integration resource property extraction mapping.
plugin/skills/azure-iac-generator/references/resource-configs-network.md	Network resource property extraction mapping.
plugin/skills/azure-iac-generator/references/resource-configs-data.md	Data/storage resource property extraction mapping.
plugin/skills/azure-iac-generator/references/resource-configs-compute.md	Compute/container resource property extraction mapping.
plugin/skills/azure-iac-generator/references/procedures/resource-filtering.md	Filtering rules for excluding non-deployable/auto-generated resources.
plugin/skills/azure-iac-generator/references/procedures/diagram-parsing.md	Procedure to parse Draw.io XML into a resource model.
plugin/skills/azure-iac-generator/references/procedures/bicep-parsing.md	Procedure to parse Bicep + modules into a comparable resource model.
plugin/skills/azure-iac-generator/references/procedures/azure-authentication.md	Hard-gate authentication procedure for live-Azure extraction.
plugin/skills/azure-iac-generator/references/diagram-to-bicep-workflow.md	Diagram-driven workflow steps and param merge rules.
plugin/skills/azure-iac-generator/references/bicep-best-practices.md	Bicep generation rules + param commenting/secrets guidance.
plugin/skills/azure-iac-generator/references/azure-to-bicep-workflow.md	Live-Azure reverse-engineering workflow steps and hard gates.
plugin/skills/azure-iac-generator/references/azure-stencil-mapping.json	Draw.io azure2 stencil imagePath → resource type mapping.
plugin/skills/azure-iac-generator/references/azure-resource-model.md	Canonical intermediate resource model schema used across workflows.
plugin/skills/azure-iac-generator/references/azure-resource-configs.md	Index document linking to per-category resource config maps + rules.
plugin/skills/azure-iac-generator/references/azure-deployment-verification.md	Pre-deployment verification rules (SKU dependencies, networking constraints, etc.).
plugin/skills/azure-iac-generator/references/auto-detection-rules.md	Topology-driven auto-settings applied during generation.

[Ba4bes]

@jongio @tmeschter And... I did it again. Created this to replace #1892

Previous comments as far as I can see were resolved, found a few bugs myself and will wait for copilot for extra feedback :)

[Ba4bes]

Fixed some incosistencies in the skill-files as well

[jongio]

1. Frontmatter version is 0.0.0-placeholder - should be 1.0.0 per repo conventions for new skills.
2. Stencil mapping JSON is missing 7 resource types that the resource model lists. Diagrams with those icons won't parse correctly.
3. version.json isn't referenced by any build tooling in this repo and can be removed.
4. Trigger tests need boundary prompts that route to other skills to catch routing conflicts.

azure-authentication.md and bicep-parsing.md are missing trailing newlines.

[jongio]

Three items the existing reviews didn't cover - all related to correctness of generated Bicep when the skill runs.

1. Storage private endpoint group IDs default to blob only - won't produce correct Bicep for file/queue/table endpoints
2. Diagram edge parsing has no fallback when edges don't carry an explicit stroke color
3. Function App type key mismatch between resource-configs-compute.md and the stencil mapping