dotnet-gha-deploy
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The templates use official actions from trusted organizations including 'actions', 'docker', and 'azure' for checkout, environment setup, and deployment processes.
- [CREDENTIALS_UNSAFE]: The documentation emphasizes the use of GitHub Secrets and OpenID Connect (OIDC) for secure Azure authentication, explicitly advising against hardcoding credentials in workflows.
- [COMMAND_EXECUTION]: Includes common build and deployment commands such as 'dotnet publish', 'docker build', and 'az cli' commands, along with health checks using 'curl' to verify deployment status.
Audit Metadata