dotnet-test
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The script 'test-with-coverage.sh' installs 'dotnet-reportgenerator-globaltool' via the .NET CLI. This is a trusted utility from the Microsoft/.NET ecosystem, resulting in a LOW severity per the [TRUST-SCOPE-RULE].
- [COMMAND_EXECUTION] (SAFE): The skill executes standard .NET CLI commands such as 'dotnet test' and 'dotnet build' within the project environment.
- [DATA_EXFILTRATION] (SAFE): No evidence of unauthorized data access or network exfiltration was detected. Operations are limited to local test results.
- [PROMPT_INJECTION] (SAFE): The documentation and instructions follow standard patterns and do not contain safety bypass or behavioral override attempts.
- [INDIRECT_PROMPT_INJECTION] (LOW):
- Ingestion points: Test results and Cobertura XML files in the './TestResults' directory.
- Boundary markers: None identified in the shell script's processing logic.
- Capability inventory: Subprocess execution of 'dotnet' and 'reportgenerator'.
- Sanitization: Uses 'awk' to extract specific numeric coverage values, which limits the potential for instruction injection.
Audit Metadata