fix(skills): switch from gzip+tar to ZIP for package upload/download

The live Foundry Skills service implements POST /skills:import and
GET /skills/{name}:download with application/zip, not application/gzip
as the upstream TypeSpec declares. Verified via 415 Unsupported Media
Type on gzip uploads. Public docs confirm:
https://learn.microsoft.com/azure/foundry/agents/how-to/tools/skills

Changes:
- skill_api: replace archive/tar+compress/gzip with archive/zip
- skill_api: Download now returns []byte (archive/zip needs io.ReaderAt)
- skill_api: rename ContentTypeGzip -> ContentTypeZip, ErrInvalidGzip ->
  ErrInvalidZip
- cmd: accept '.zip' for --file; reject '.tar.gz'/'.tgz'
- cmd: writeRaw now writes '<name>.zip'
- tests: rewrite archive_test.go and archive_peek_test.go for ZIP
- docs (AGENTS.md, README.md, CHANGELOG.md): s/gzip,tar.gz/zip/g

The design spec (PR #8204) will need a follow-up to match.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Author: huimiu

cli/azd/extensions/azure.ai.skills/AGENTS.md

@@ -9,7 +9,7 @@ Use this file together with `cli/azd/AGENTS.md`. This guide supplements the root
 Useful places to start:
 
 - `internal/cmd/`: Cobra commands and top-level orchestration
-- `internal/pkg/skill_api/`: typed Foundry Skills REST client, models, SKILL.md parser, and safe tar.gz extractor
+- `internal/pkg/skill_api/`: typed Foundry Skills REST client, models, SKILL.md parser, and safe ZIP extractor
 - `internal/exterrors/`: structured error factories and extension-specific codes
 
 ## Relationship to `azure.ai.agents`
@@ -64,9 +64,9 @@ Each `--debug` run writes to `azd-ai-skills-<date>.log` in the current working d
 ## File handling
 
 - `--file` is **not** a manifest. It is read at invocation time only; the CLI does not track or re-read it after the command returns.
-- `create`: accepts `.md`, `.tar.gz`, or `.tgz`. Mode is inferred from extension; conflicting modes (inline + `--file`) are rejected.
-- `update`: accepts `.md` only. `.tar.gz`/`.tgz` is rejected with a structured suggestion to use `create --force`.
-- `download`: writes either an extracted directory (default) or the unmodified gzip archive (`--raw`).
+- `create`: accepts `.md` or `.zip`. Mode is inferred from extension; conflicting modes (inline + `--file`) are rejected.
+- `update`: accepts `.md` only. `.zip` is rejected with a structured suggestion to use `create --force`.
+- `download`: writes either an extracted directory (default) or the unmodified ZIP archive (`--raw`).
 
 ## Release preparation
 

cli/azd/extensions/azure.ai.skills/CHANGELOG.md

@@ -5,12 +5,12 @@
 - Initial preview release of the `azure.ai.skills` extension.
 - Adds the `azd ai skill` command group with full CRUD over Foundry Skills:
   - `azd ai skill create <name>` — inline (`--description` + `--instructions`),
-    SKILL.md file (`--file ./SKILL.md`), or gzip package (`--file ./skill.tar.gz`).
+    SKILL.md file (`--file ./SKILL.md`), or ZIP package (`--file ./skill.zip`).
   - `azd ai skill update <name>` — inline or `--file *.md`.
   - `azd ai skill show <name>` — metadata only.
   - `azd ai skill list` — paginated, supports `--top` and `--orderby`.
   - `azd ai skill download <name>` — extracts to `./.agents/skills/<name>/` by
-    default, `--raw` keeps the gzip archive.
+    default, `--raw` keeps the ZIP archive.
   - `azd ai skill delete <name>` — confirmation by default, `--force` to skip.
 - Shares the Foundry project-endpoint resolution cascade with `azure.ai.agents`,
   reading `extensions.ai-skills.project.context.endpoint` first and falling back to

cli/azd/extensions/azure.ai.skills/README.md

@@ -9,7 +9,7 @@ terminal.
 ```bash
 azd ai skill create <name> [--description "..." --instructions "..."]
 azd ai skill create <name> --file ./SKILL.md
-azd ai skill create <name> --file ./skill.tar.gz
+azd ai skill create <name> --file ./skill.zip
 
 azd ai skill update <name> [--description "..."] [--instructions "..."] [--file ./SKILL.md]
 azd ai skill show <name>

cli/azd/extensions/azure.ai.skills/internal/cmd/root.go

@@ -27,7 +27,7 @@ func NewRootCommand() *cobra.Command {
 at runtime — from your terminal.
 
 Skills carry either inline JSON (description + Markdown instructions) or a
-packaged gzip tarball bundling SKILL.md plus any sibling assets. Use this
+packaged ZIP archive bundling SKILL.md plus any sibling assets. Use this
 command group to create, update, show, list, download, and delete skills in
 a Foundry project.`,
 	})

cli/azd/extensions/azure.ai.skills/internal/cmd/skill_create.go

@@ -183,8 +183,8 @@ func (a *createAction) runFilePackage(ctx context.Context, client *skill_api.Cli
 	if info.IsDir() {
 		return exterrors.Validation(
 			exterrors.CodeInvalidSkillFile,
-			fmt.Sprintf("--file %s is a directory; expected a .tar.gz / .tgz archive", a.flags.file),
-			"pass a single gzip archive path",
+			fmt.Sprintf("--file %s is a directory; expected a .zip archive", a.flags.file),
+			"pass a single .zip archive path",
 		)
 	}
 
@@ -213,7 +213,7 @@ func printCreateResult(s *skill_api.Skill, format string) error {
 	return printSkillDetail(s, outputTable)
 }
 
-// verifyPackageNameMatches peeks SKILL.md from a .tar.gz archive and ensures
+// verifyPackageNameMatches peeks SKILL.md from a .zip archive and ensures
 // its front-matter `name` (when present) matches the positional argument the
 // user supplied. This guards `--force` in package mode against the
 // destructive sequence "delete positional name, then upload archive that
@@ -225,22 +225,21 @@ func printCreateResult(s *skill_api.Skill, format string) error {
 // archives), or when the embedded name matches positionalName. Returns a
 // structured validation error otherwise.
 func verifyPackageNameMatches(archivePath, positionalName string) error {
-	f, openErr := os.Open(archivePath) //nolint:gosec // user-supplied path opened on their behalf
-	if openErr != nil {
+	data, readErr := os.ReadFile(archivePath) //nolint:gosec // user-supplied path read on their behalf
+	if readErr != nil {
 		return exterrors.Validation(
 			exterrors.CodeInvalidSkillFile,
-			fmt.Sprintf("cannot open %s: %s", archivePath, openErr),
+			fmt.Sprintf("cannot read %s: %s", archivePath, readErr),
 			"verify the file is readable",
 		)
 	}
-	defer f.Close()
 
-	archiveName, peekErr := skill_api.PeekArchiveSkillName(f)
+	archiveName, peekErr := skill_api.PeekArchiveSkillName(data)
 	if peekErr != nil {
 		return exterrors.Validation(
 			exterrors.CodeInvalidSkillFile,
 			fmt.Sprintf("cannot inspect %s: %s", archivePath, peekErr),
-			"ensure the archive is a valid .tar.gz containing a SKILL.md file",
+			"ensure the archive is a valid .zip containing a SKILL.md file",
 		)
 	}
 	if archiveName == "" || archiveName == positionalName {
@@ -281,19 +280,17 @@ func selectCreateMode(f *createFlags) (createMode, error) {
 
 	if fileProvided {
 		ext := strings.ToLower(filepath.Ext(f.file))
-		// `.tgz` and `.tar.gz` both work for packages; `.md` for inline.
-		switch {
-		case ext == ".md":
+		// `.zip` for packages; `.md` for SKILL.md inline body.
+		switch ext {
+		case ".md":
 			return modeFileMd, nil
-		case ext == ".tgz":
-			return modeFilePackage, nil
-		case strings.HasSuffix(strings.ToLower(f.file), ".tar.gz"):
+		case ".zip":
 			return modeFilePackage, nil
 		default:
 			return modeNone, exterrors.Validation(
 				exterrors.CodeInvalidSkillFile,
 				fmt.Sprintf("unsupported --file extension %q", ext),
-				"use .md for inline metadata, or .tar.gz / .tgz for a package upload",
+				"use .md for inline metadata or .zip for a package upload",
 			)
 		}
 	}
@@ -362,12 +359,12 @@ func newCreateCommand(extCtx *azdext.ExtensionContext) *cobra.Command {
 
   1. Inline:   --description "..." --instructions "..."
   2. SKILL.md: --file ./SKILL.md   (CLI parses YAML front matter + body)
-  3. Package:  --file ./skill.tar.gz   (CLI uploads the archive as-is)
+  3. Package:  --file ./skill.zip   (CLI uploads the archive as-is)
 
 Pass --force to delete an existing skill of the same name before creating.`,
 		Example: `  azd ai skill create greet-user --description "Welcomes a new user" --instructions "Greet ..."
   azd ai skill create greet-user --file ./SKILL.md
-  azd ai skill create greet-user --file ./skill.tar.gz --force`,
+  azd ai skill create greet-user --file ./skill.zip --force`,
 		Args: cobra.ExactArgs(1),
 		RunE: func(cmd *cobra.Command, args []string) error {
 			flags.name = args[0]
@@ -387,7 +384,7 @@ Pass --force to delete an existing skill of the same name before creating.`,
 	cmd.Flags().StringVar(&flags.instructions, "instructions", "",
 		"Inline mode: Markdown body defining skill behavior")
 	cmd.Flags().StringVar(&flags.file, "file", "",
-		"Path to SKILL.md (.md) or a gzip package (.tar.gz / .tgz)")
+		"Path to SKILL.md (.md) or a ZIP package (.zip)")
 	cmd.Flags().BoolVar(&flags.force, "force", false,
 		"Delete an existing skill of the same name before creating")
 	azdext.RegisterFlagOptions(cmd, azdext.FlagOptions{

cli/azd/extensions/azure.ai.skills/internal/cmd/skill_download.go

@@ -7,7 +7,6 @@ import (
 	"context"
 	"errors"
 	"fmt"
-	"io"
 	"os"
 	"path/filepath"
 
@@ -72,7 +71,7 @@ func (a *downloadAction) Run(ctx context.Context) error {
 	// Pre-flight via Get so we can detect the "no associated package" case
 	// before issuing the :download call. The service returns 404 with a
 	// dedicated error code when the skill was created from inline JSON (or a
-	// SKILL.md file) rather than a gzip package, but the message is opaque —
+	// SKILL.md file) rather than a ZIP package, but the message is opaque —
 	// surfacing the HasBlob check up front gives the user a clearer answer.
 	skill, err := skillCtx.client.Get(ctx, a.flags.name)
 	if err != nil {
@@ -82,9 +81,9 @@ func (a *downloadAction) Run(ctx context.Context) error {
 		return exterrors.Validation(
 			exterrors.CodeSkillNoPackage,
 			fmt.Sprintf("skill %q has no downloadable package", a.flags.name),
-			"only skills created from a `.tar.gz` / `.tgz` archive have a downloadable "+
+			"only skills created from a `.zip` archive have a downloadable "+
 				"package. Use `azd ai skill show <name>` to inspect metadata; "+
-				"re-create with `azd ai skill create <name> --file <archive>.tar.gz --force` "+
+				"re-create with `azd ai skill create <name> --file <archive>.zip --force` "+
 				"if you want a downloadable copy.",
 		)
 	}
@@ -93,20 +92,19 @@ func (a *downloadAction) Run(ctx context.Context) error {
 	if err != nil {
 		return exterrors.ServiceFromAzure(err, exterrors.OpDownloadSkill)
 	}
-	defer body.Close()
 
 	if a.flags.raw {
 		return a.writeRaw(body, absOut)
 	}
 	return a.writeExtracted(body, absOut)
 }
 
-func (a *downloadAction) writeRaw(body io.Reader, outputDir string) error {
+func (a *downloadAction) writeRaw(body []byte, outputDir string) error {
 	if err := os.MkdirAll(outputDir, 0700); err != nil {
 		return fmt.Errorf("create output dir: %w", err)
 	}
 
-	archivePath := filepath.Join(outputDir, a.flags.name+".tar.gz")
+	archivePath := filepath.Join(outputDir, a.flags.name+".zip")
 
 	// Always Lstat (even with --force) so we never follow a symlink and so we
 	// refuse to overwrite a non-regular file (directory, device, socket, ...).
@@ -151,7 +149,7 @@ func (a *downloadAction) writeRaw(body io.Reader, outputDir string) error {
 	if err != nil {
 		return fmt.Errorf("create archive: %w", err)
 	}
-	if _, copyErr := io.Copy(f, body); copyErr != nil {
+	if _, copyErr := f.Write(body); copyErr != nil {
 		_ = f.Close()
 		return fmt.Errorf("write archive: %w", copyErr)
 	}
@@ -162,13 +160,13 @@ func (a *downloadAction) writeRaw(body io.Reader, outputDir string) error {
 	res := downloadResult{
 		Skill:     a.flags.name,
 		OutputDir: outputDir,
-		Archive:   a.flags.name + ".tar.gz",
+		Archive:   a.flags.name + ".zip",
 		Raw:       true,
 	}
 	return a.printResult(res)
 }
 
-func (a *downloadAction) writeExtracted(body io.Reader, outputDir string) error {
+func (a *downloadAction) writeExtracted(body []byte, outputDir string) error {
 	result, err := skill_api.SafeExtract(body, skill_api.ExtractOptions{
 		OutputDir: outputDir,
 		Force:     a.flags.force,
@@ -224,11 +222,11 @@ func classifyExtractError(err error, outputDir string) error {
 			err.Error(),
 			fmt.Sprintf("pass --force to overwrite existing files in %s", outputDir),
 		)
-	case errors.Is(err, skill_api.ErrInvalidGzip):
+	case errors.Is(err, skill_api.ErrInvalidZip):
 		return exterrors.Validation(
 			exterrors.CodeInvalidParameter,
 			err.Error(),
-			"the service did not return a gzip archive; retry or contact support",
+			"the service did not return a valid zip archive; retry or contact support",
 		)
 	}
 	return err
@@ -242,15 +240,15 @@ func newDownloadCommand(extCtx *azdext.ExtensionContext) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "download <name>",
 		Short: "Download a Foundry skill package.",
-		Long: `Download a skill's gzip package.
+		Long: `Download a skill's ZIP package.
 
 By default the CLI extracts the archive into --output-dir (which defaults to
-'./.agents/skills/<name>/'). Pass --raw to write the unmodified gzip archive
+'./.agents/skills/<name>/'). Pass --raw to write the unmodified ZIP archive
 into --output-dir instead.
 
 Extraction enforces strict safety rules: no absolute paths, no '..' segments,
-no symlinks, no hard links, no non-regular files, and a 10,000-entry /
-512 MB cap on the total uncompressed size.`,
+no symlinks / non-regular entries, and a 10,000-entry / 512 MB cap on the
+total uncompressed size.`,
 		Args: cobra.ExactArgs(1),
 		RunE: func(cmd *cobra.Command, args []string) error {
 			flags.name = args[0]
@@ -266,7 +264,7 @@ no symlinks, no hard links, no non-regular files, and a 10,000-entry /
 	cmd.Flags().StringVar(&flags.outputDir, "output-dir", "",
 		"Directory to write the extracted skill (default: ./.agents/skills/<name>/)")
 	cmd.Flags().BoolVar(&flags.raw, "raw", false,
-		"Skip extraction; write the gzip archive as-is to --output-dir")
+		"Skip extraction; write the ZIP archive as-is to --output-dir")
 	cmd.Flags().BoolVar(&flags.force, "force", false,
 		"Overwrite existing files in --output-dir")
 	azdext.RegisterFlagOptions(cmd, azdext.FlagOptions{

cli/azd/extensions/azure.ai.skills/internal/cmd/skill_update.go

@@ -131,11 +131,11 @@ func (a *updateAction) validateFlags() error {
 		switch {
 		case ext == ".md":
 			return nil
-		case ext == ".tgz", strings.HasSuffix(strings.ToLower(a.flags.file), ".tar.gz"):
+		case ext == ".zip":
 			return exterrors.Validation(
 				exterrors.CodeInvalidSkillFile,
-				"gzip packages cannot be applied via `skill update`",
-				"use `azd ai skill create <name> --file <path>.tar.gz --force` to replace the skill",
+				"ZIP packages cannot be applied via `skill update`",
+				"use `azd ai skill create <name> --file <path>.zip --force` to replace the skill",
 			)
 		default:
 			return exterrors.Validation(
@@ -161,7 +161,7 @@ func newUpdateCommand(extCtx *azdext.ExtensionContext) *cobra.Command {
 Pass any subset of:
   --description "..."  --instructions "..."
 or:
-  --file ./SKILL.md    (parsed locally; .tar.gz / .tgz is not accepted here)
+  --file ./SKILL.md    (parsed locally; .zip is not accepted here)
 
 The CLI fetches the current skill, merges your changes locally, then POSTs the
 merged payload to the service.`,

cli/azd/extensions/azure.ai.skills/internal/cmd/skill_validate_test.go

@@ -71,7 +71,7 @@ func TestSelectCreateMode_FileMd(t *testing.T) {
 }
 
 func TestSelectCreateMode_FilePackage(t *testing.T) {
-	for _, f := range []string{"./pkg.tar.gz", "./pkg.tgz", "./PKG.TGZ"} {
+	for _, f := range []string{"./pkg.zip", "./PKG.ZIP"} {
 		mode, err := selectCreateMode(&createFlags{file: f})
 		require.NoError(t, err, "file %q", f)
 		require.Equal(t, modeFilePackage, mode, "file %q", f)
@@ -116,8 +116,8 @@ func TestUpdateAction_ConflictingArgs(t *testing.T) {
 	require.Equal(t, exterrors.CodeConflictingArguments, le.Code)
 }
 
-func TestUpdateAction_RejectsGzipFile(t *testing.T) {
-	for _, f := range []string{"./pkg.tar.gz", "./pkg.tgz"} {
+func TestUpdateAction_RejectsZipFile(t *testing.T) {
+	for _, f := range []string{"./pkg.zip", "./PKG.ZIP"} {
 		a := &updateAction{flags: &updateFlags{file: f}}
 		err := a.validateFlags()
 		require.Errorf(t, err, "file %q", f)

cli/azd/extensions/azure.ai.skills/internal/exterrors/codes.go

@@ -15,7 +15,7 @@ const (
 	// unreadable, or unsupported file, or when SKILL.md front matter
 	// fails to parse.
 	CodeInvalidSkillFile = "invalid_skill_file"
-	// CodeSkillArchiveUnsafe is used when a downloaded gzip archive
+	// CodeSkillArchiveUnsafe is used when a downloaded ZIP archive
 	// contains an unsafe entry (zip-slip, symlink, oversized, etc.).
 	CodeSkillArchiveUnsafe = "skill_archive_unsafe"
 	// CodeSkillOutputCollision is used when `skill download` would