dotnet-source-gen-logging
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill reads and refactors local C# source code, which introduces a surface where malicious instructions embedded in comments or code could influence agent behavior. Ingestion points: Local source files accessed via 'Read', 'Glob', and 'Grep' tools. Boundary markers: Absent; there are no instructions to delimit or ignore instructions within the processed files. Capability inventory: 'Bash(dotnet:*)' for building code and 'Read' for file system access. Sanitization: Absent; the skill directs the agent to transform and interact with the code without validation.
- [Command Execution] (SAFE): The skill employs 'Bash(dotnet:*)' to run 'dotnet build'. While this involves code execution via the build system, it is restricted to the dotnet CLI and is a necessary step for the skill's stated objective of verifying refactoring results.
Audit Metadata