microsoft-docs
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (SAFE): The skill is designed to ingest and process external data from documentation websites (e.g., learn.microsoft.com, aspire.dev, docs.github.com). While fetching external content technically creates a surface for indirect prompt injection, the sources are highly reputable official documentation repositories. No dangerous capabilities (such as shell access or file system modification) are exposed by this skill to be exploited by such an injection.
- Trusted Sources (SAFE): All external references and tools target established Microsoft and GitHub domains, which are considered trusted for documentation purposes.
- No Executable Code (SAFE): The skill consists entirely of instructional markdown and does not include any scripts, binaries, or automated installation procedures.
Audit Metadata