dotnet-version-upgrade
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous instructions for executing standard .NET CLI commands (e.g.,
dotnet build,dotnet test,dotnet tool install) to facilitate the upgrade process and validate project integrity. - [EXTERNAL_DOWNLOADS]: Recommends installing the
dotnet-outdated-tooland Microsoft's officialupgrade-assistantvia the .NET global tool system. These are standard developer utilities hosted on the official NuGet registry. - [INDIRECT_PROMPT_INJECTION]: The skill defines an attack surface by consuming output from the
dotnet-version-detectionskill. - Ingestion points: The skill processes the Target Framework Moniker (TFM) and SDK version data provided by a prerequisite skill.
- Boundary markers: No explicit delimiters are defined for the consumed data.
- Capability inventory: The skill utilizes subprocess execution for
dotnetCLI operations (build, test, install). - Sanitization: No explicit sanitization or validation of the input version strings is documented, as it relies on the structured output of the trusted detection skill.
Audit Metadata