frontend-razor
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation and code snippets for educational purposes. No executable scripts, binaries, or unauthorized system commands are included.
- [SAFE]: There are no patterns suggesting prompt injection, safety filter bypasses, or instructions to ignore system guidelines.
- [SAFE]: Analysis of coding patterns identified a potential vulnerability surface related to Indirect Prompt Injection through the documented use of
Html.Raw(Model.HtmlContent). This ingestion point allows rendering raw HTML/JS in a browser context. However, as this is presented as a standard framework feature for rendering trusted content and is accompanied by semantic HTML and proper model binding examples, it is classified as a safe documentation resource rather than a malicious exploitation attempt. - [SAFE]: All external resource references, such as jQuery and ASP.NET Core tag helpers, are standard libraries for web development and are referenced through local paths or established vendor namespaces.
Audit Metadata