mpg-sdk-migration
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- Standard Build and Script Execution: The skill executes commands such as
dotnet build,git, and specific PowerShell scripts (e.g.,RegenSdkLocal.ps1) within the repository to generate and compile SDK code. These actions are standard for the migration process and target the vendor's official repositories and tools. - Autonomous Code and Configuration Modification: The skill includes an autonomous phase where the agent triages build errors and modifies
client.tspor adds C# partial classes to resolve them. This automated behavior is a core functional requirement of the migration workflow and is validated by the project's own build system. - Untrusted Data Ingestion Surface: The skill processes TypeSpec definitions from an external repository to generate code. Ingestion points: TypeSpec files located in the
azure-rest-api-specsrepository. Boundary markers: No specific boundary markers are used to delimit the ingested data within the prompt. Capability inventory: The skill possesses capabilities to execute shell commands and modify the local file system. Sanitization: The skill relies on the TypeSpec compiler and the .NET build chain to validate and sanitize the ingested definitions during the code generation and compilation process.
Audit Metadata