dotnet-semantic-kernel
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and implementation patterns for Microsoft's Semantic Kernel. All referenced NuGet packages originate from a trusted organization (Microsoft).
- [CREDENTIALS_UNSAFE]: No hardcoded credentials were detected. The skill demonstrates best practices by using environment variables and configuration objects (e.g., builder.Configuration) for managing sensitive API keys and endpoints.
- [EXTERNAL_DOWNLOADS]: All external references, including GitHub links and NuGet package names, point to official Microsoft repositories and established vector store providers (like Qdrant), which are considered trusted sources.
- [PROMPT_INJECTION]: The provided prompt templates (Handlebars, YAML, and inline) are standard educational examples. No instructions to bypass safety filters or override system behavior were found.
- [COMMAND_EXECUTION]: The skill does not execute any dangerous shell commands or download external scripts for execution.
Audit Metadata