vuln-research

This fragment identifies high-risk .NET sinks and attack surfaces that warrant careful audit in any consuming project. It highlights potential abuse vectors (deserialization, RCE via dynamic execution, SSRF, SQLi, path traversal, XSS, LDAP) but provides no runnable code or mitigations. The actual risk depends on surrounding usage, input validation, and secure deserialization strategies in the codebase.

SUSPICIOUS: the skill is internally consistent and not deceptive, but its core function is to turn the agent into an offensive security operator capable of exploit discovery and PoC development. The main risk is not credential theft or supply-chain abuse; it is enabling high-impact security testing and exploit activity against external targets.