development-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No security issues detected. The skill provides legitimate guidance for .NET development tasks using standard tools and follows established patterns.
- PROMPT_INJECTION (SAFE): The skill possesses an indirect prompt injection surface as it analyzes external codebase content using Read, Grep, and Glob and executes changes via Bash and Write. This behavior is necessary for the skill's primary purpose. 1. Ingestion points: External codebase files and requirement documents processed during Phase 1. 2. Boundary markers: No explicit delimiters or instructions are used to separate ingested content from system instructions. 3. Capability inventory: Bash (executing dotnet build/test), Write, and Edit tools for file modification. 4. Sanitization: Not applicable for a local developer tool.
Audit Metadata