dotnet-timezone
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill provides legitimate programming guidance and recommends established community libraries (NodaTime, TimeZoneConverter) for .NET development. It promotes secure practices like storing UTC and avoiding platform-specific timezone lookups.
- [INDIRECT_PROMPT_INJECTION]: The skill has a surface for processing untrusted user data when extracting locations from documents or addresses. However, given the specific utility nature of the skill and the lack of sensitive operations associated with the output, the risk is assessed as safe. * Ingestion points: The skill extracts location information from addresses, cities, or documents provided by the user in SKILL.md. * Boundary markers: No specific delimiters or instructions to ignore embedded commands within the user data are provided. * Capability inventory: The skill generates C# code snippets and timezone mappings. * Sanitization: No explicit sanitization or validation of the input text is mentioned before processing.
Audit Metadata