Skills
skills/managedcode/dotnet-skills/dotnet-entity-framework6/Gen Agent Trust Hub

dotnet-entity-framework6

Pass

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides instructional content and code snippets for maintaining Entity Framework 6 (EF6) codebases. The content is technical and aligned with standard .NET development practices.
  • [SAFE]: External references point exclusively to Microsoft's official documentation (learn.microsoft.com), which is a well-known and trusted source for technical guidelines.
  • [DATA_EXPOSURE]: Contains a hardcoded connection string in references/patterns.md (Data Source=(LocalDb)\MSSQLLocalDB;Initial Catalog=TestDb;Integrated Security=True). This is documented as a standard local development/testing string using Integrated Security, posing no credential risk.
  • [INDIRECT_PROMPT_INJECTION]: The skill instructs the agent to audit existing codebase files (e.g., searching for .edmx files and identifying C# patterns like ObjectContext). While this establishes an ingestion point for untrusted data, the instructions are limited to passive analysis and verification of standard development workflows, maintaining a safe posture.
  • [COMMAND_EXECUTION]: The workflow mentions using the dotnet ef CLI for migration verification. This is a standard developer tool used within its intended context for data layer management.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 10, 2026, 06:53 PM