Fix comments in PR

Co-authored-by: Copilot <copilot@github.com>

Author: Ba4bes

ba4bes-unific-travis.sln

@@ -4,7 +4,7 @@ description: "Generate deployment-ready Bicep templates from existing Azure envi
 license: MIT
 metadata:
   author: Microsoft
-  version: "1.0.1"
+  version: "0.0.0-placeholder"
 ---
 
 # Azure IaC Generator

plugin/skills/azure-iac-generator/SKILL.md

@@ -14,4 +14,5 @@ Settings automatically applied based on diagram topology during Bicep generation
 | Private Endpoint exists in a subnet | Set `privateEndpointNetworkPolicies: "Disabled"` on that subnet |
 | VM exists without NIC in diagram | Auto-add NIC resource |
 | App Service exists without App Service Plan | Auto-add App Service Plan |
-| Subnet index N | Set `addressPrefix: "10.0.N.0/24"` (auto-increment) |
+| Subnet index N | Derive `addressPrefix` from the VNet `addressSpace` when present; otherwise require or prompt for a base CIDR before auto-assigning a non-overlapping subnet |  
+

plugin/skills/azure-iac-generator/references/auto-detection-rules.md

@@ -1,8 +1,5 @@
 # Azure Deployment Verification Rules
 
-> **Canonical copy:** Shared deployment-verification rules used by Azure IaC skills. Keep local copies aligned when this rule set changes.
-
-
 Shared pre-deployment verification rules for generated Bicep templates. These cover **gotcha-prone constraints** that are easy to miss — SKU dependencies, resource compatibility, and networking rules that cause deployment failures.
 
 For rules not listed here (security defaults like TLS 1.2, HTTPS enforcement, runtime version currency), verify against Bicep MCP `get_az_resource_type_schema`, [bicep-best-practices.md](bicep-best-practices.md), and Microsoft documentation.

plugin/skills/azure-iac-generator/references/azure-deployment-verification.md

@@ -1,10 +1,7 @@
 # Azure Resource Metadata Model
 
-> **Canonical copy:** Shared resource-model schema used across Azure IaC and diagram skills. Keep local copies aligned when this schema changes.
 
 
-Shared internal representation used by AzVerify skills (sketch-to-diagram, diagram-to-bicep, diagram-azure-sync).
-
 ## Schema
 
 Each Azure environment is represented as a **resource model** — a JSON structure with the following shape:

plugin/skills/azure-iac-generator/references/azure-resource-model.md

@@ -1,10 +1,4 @@
 {
-  "_canonicalCopy": {
-    "description": "Shared Azure stencil mapping copied into azure-iac-generator so diagram-parsing references resolve locally.",
-    "maintainers": [
-      "Azure IaC skills"
-    ]
-  },
   "resources": [
     {
       "type": "Microsoft.Compute/virtualMachines",

plugin/skills/azure-iac-generator/references/azure-stencil-mapping.json

@@ -63,7 +63,7 @@ Follow [bicep-best-practices.md](bicep-best-practices.md) strictly. Call Bicep M
 | File | Contents |
 |---|---|
 | `main.bicep` | `targetScope = 'resourceGroup'`; all params with `@description()` and `@secure()` where needed; one `module` block per category; outputs for key endpoints/IDs |
-| `<scope>.bicepparam` | `using 'main.bicep'`; every param value matching current Azure config; 1-3 line comments per param (what it controls, alternatives with cost impact, version EOL dates); `readEnvironmentVariable()` for secrets |
+| `main.bicepparam` | `using 'main.bicep'`; every param value matching current Azure config; 1-3 line comments per param (what it controls, alternatives with cost impact, version EOL dates); `readEnvironmentVariable()` for secrets |
 | `modules/networking.bicep` | VNets, subnets, NSGs, private endpoints, NICs, firewalls |
 | `modules/compute.bicep` | VMs, App Services, Functions, Container Apps — follow the runtime defaulting rules in [version-currency.md](version-currency.md) |
 | `modules/data.bicep` | Storage, SQL, Cosmos DB, Redis, Key Vault |

plugin/skills/azure-iac-generator/references/azure-to-bicep-workflow.md

@@ -1,6 +1,6 @@
 # Bicep Best Practices
 
-Mandatory rules for all Bicep generation in AzVerify skills. Before generating any Bicep, also call the Bicep MCP server's `get_bicep_best_practices` tool for the latest guidance.
+Mandatory rules for all Bicep generation. Before generating any Bicep, also call the Bicep MCP server's `get_bicep_best_practices` tool for the latest guidance.
 
 ---
 

plugin/skills/azure-iac-generator/references/bicep-best-practices.md

@@ -1,15 +1,11 @@
 # Azure Authentication Check
 
-> **Canonical copy:** Shared authentication gate used by Azure IaC and diagram skills. Keep local copies aligned when this procedure changes.
-
-
-Canonical procedure for verifying Azure session before any Azure operations. Referenced by all skills that interact with Azure.
 
 ---
 
 ## Procedure
 
-1. **Verify session**: Run `az account show` or `Get-AzContext` in the terminal, OR attempt a lightweight Azure MCP call (e.g., `mcp_azure_subscription_list`)
+1. **Verify session**: Run a lightweight Azure MCP call (e.g., `mcp_azure_mcp_subscription_list`), or run `az account show` or `Get-AzContext` in the terminal
 
 2. **If authenticated**:
    - Display the active subscription name and ID
@@ -18,7 +14,7 @@ Canonical procedure for verifying Azure session before any Azure operations. Ref
 3. **If NOT authenticated**:
    - Present this message:
 
-   ```
+   ```markdown
    ## Azure Authentication Required
 
    You need an active Azure session.
@@ -32,4 +28,4 @@ Canonical procedure for verifying Azure session before any Azure operations. Ref
    After authenticating, run this skill again.
    ```
 
-   - **HARD GATE** — Stop execution. Do not proceed without authentication.
+   - **HARD GATE** — Stop execution. Do not proceed without authentication.

plugin/skills/azure-iac-generator/references/procedures/azure-authentication.md

@@ -1,7 +1,5 @@
 # Bicep Parsing Procedure
 
-> **Canonical copy:** Shared Bicep parsing procedure used by Azure IaC and comparison skills. Keep local copies aligned when this procedure changes.
-
 
 Parse Bicep templates into a structured resource model for comparison. Referenced by skills that analyze existing Bicep files.
 
@@ -15,7 +13,9 @@ Read the `.bicepparam` file and extract all parameter values. These are needed t
 
 ### 2. Read Template Files
 
-Read `main.bicep` and parse all `module` declarations to find referenced Bicep files. Module paths are relative to the file containing the `module` statement — they may reference files outside `modules/` (e.g., `'../shared/networking.bicep'` or `'br:myregistry.azurecr.io/bicep/networking:v1'`). Read each resolved module file recursively to discover nested module references.
+Read `main.bicep` and parse all `module` declarations to find referenced Bicep files. Module paths are relative to the file containing the `module` statement — they may reference files outside `modules/` (e.g., `'../shared/networking.bicep'`). Read each resolved module file recursively to discover nested module references.
+
+> **Registry modules** (`br:` references like `'br:myregistry.azurecr.io/bicep/networking:v1'`) are not local file paths. They require `bicep restore` to download into the local module cache before they can be read. If restoration is not possible, flag these modules as "external — cannot resolve locally" and skip recursive parsing for them.
 
 ### 3. Extract Resources
 
@@ -57,4 +57,4 @@ Output the parsed Bicep resource model in chat for user verification. Schema per
 |---|---|---|
 | Shallow | Type, name, file location | Quick comparison / drift detection |
 | Standard | Above + params, parent refs, conditions | Sync, what-if |
-| Deep | Above + all property values resolved | Policy check, detailed what-if |
+| Deep | Above + all property values resolved | Policy check, detailed what-if |