Skills
skills/wshaddix/dotnet-skills/dotnet-api-security/Gen Agent Trust Hub

dotnet-api-security

Pass

Audited by Gen Agent Trust Hub on Mar 7, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as a comprehensive guide for implementing API security in ASP.NET Core.
  • The provided C# code snippets follow modern security standards, such as using .NET 8/10 features for Identity and Passkeys.
  • It avoids hardcoding sensitive information, instead demonstrating how to retrieve configuration values securely (e.g., builder.Configuration["Oidc:ClientSecret"]).
  • The 'Agent Gotchas' section provides critical security advice, explicitly discouraging dangerous practices like using AllowAnyOrigin() in production or hardcoding JWT signing keys.
  • All external references point to official Microsoft documentation, and no suspicious network activity or obfuscated code was detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 7, 2026, 03:43 PM