dotnet-secrets-management
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides security-focused documentation for .NET development. It uses example placeholders (e.g., 'dev123', 'SG.dev-key-here') in a tutorial context to demonstrate the use of the
dotnet user-secretstool, which is an established practice for local development isolation. - [SAFE]: The skill explicitly instructs against dangerous behaviors such as committing secrets to source control, storing credentials in configuration files, and logging sensitive data.
- [SAFE]: All referenced tools (dotnet CLI), libraries (Microsoft.Extensions.*), and external links (learn.microsoft.com) are official components of the .NET ecosystem and are treated as trusted sources.
Audit Metadata