dotnet-tool-management
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent on using standard dotnet tool commands to install, update, and manage software packages locally and globally.
- [EXTERNAL_DOWNLOADS]: The skill facilitates downloading .NET tools from the NuGet registry, a well-known service, using the native .NET toolchain.
- [REMOTE_CODE_EXECUTION]: By design, the skill provides instructions for the installation and execution of external binaries from trusted sources.
- [PROMPT_INJECTION]: The skill identifies an indirect prompt injection surface through the processing of local tool manifest files.
- Ingestion points: The skill reads configuration from the .config/dotnet-tools.json manifest file to restore and run local tools.
- Boundary markers: No instructions are provided to the agent to ignore or delimit instructions potentially embedded in manifest metadata.
- Capability inventory: The skill enables the agent to install, restore, and execute external packages (dotnet tool restore/run).
- Sanitization: No explicit validation or sanitization is defined for the package identifiers or versions listed in the manifest file.
Audit Metadata