dotnet-ado-build-test
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Official Task Integration: The skill utilizes standard, versioned Azure DevOps tasks (e.g., DotNetCoreCLI@2, UseDotNet@2, NuGetAuthenticate@1) for building, testing, and packaging .NET applications, adhering to platform best practices.\n- [SAFE]: Secure Credential Management: The documentation explicitly advises against hardcoding secrets and demonstrates the use of NuGetAuthenticate@1, which leverages the pipeline's service identity for secure access to Azure Artifacts feeds.\n- [SAFE]: Trusted External Tools: The skill references dotnet-reportgenerator-globaltool, which is a widely recognized and trusted community utility in the .NET ecosystem, installed via the official NuGet registry.\n- [SAFE]: Robust Scripting Patterns: The skill provides guidance on shell script safety, specifically recommending the use of 'set -euo pipefail' to prevent silent failures in CI pipelines.
Audit Metadata