dotnet-add-ci
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Provides standard .NET CLI commands (build, test, pack) within generated templates for CI/CD automation. These are common and safe development practices.- [EXTERNAL_DOWNLOADS]: The generated workflows reference official GitHub Actions (actions/checkout, actions/setup-dotnet) and Azure DevOps tasks. These are sourced from trusted, well-known providers.- [EXTERNAL_DOWNLOADS]: Recommends a third-party GitHub CLI extension (gh-workflow-validator) for verification purposes. While this is an external tool, it is suggested as an optional manual step for the user.- [PROMPT_INJECTION]: Analyzed for indirect prompt injection surface.
- Ingestion points: Repository structure and file indicators (e.g., .github/ folder).
- Boundary markers: None, uses simple file existence checks.
- Capability inventory: Writes YAML files for CI/CD workflows.
- Sanitization: Uses fixed templates based on detected environment state, preventing the injection of malicious instructions from analyzed data.
Audit Metadata