collect-user-input
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- Implementation of Security Best Practices: The instructions emphasize critical security measures for web applications, specifically mentioning the required use of
<AntiforgeryToken />in plain HTML forms to prevent Cross-Site Request Forgery (CSRF) attacks. - Input Validation Guidance: The skill appropriately guides developers on implementing data validation using both standard
DataAnnotationsValidatorand custom validation logic, which helps prevent malformed or malicious data from being processed. - Standard Instructional Content: The provided code snippets use standard Blazor components and C# patterns (e.g.,
EditForm,@bind-Value,InputFile) for their intended purposes without any evidence of obfuscation or unauthorized system access. - Secure File Handling: The file upload section includes advice on setting
maxAllowedSizelimits when reading file streams, which is a standard practice to prevent denial-of-service (DoS) scenarios from large file uploads.
Audit Metadata