Skills
skills/managedcode/dotnet-skills/migrate-xunit-to-xunit-v3/Gen Agent Trust Hub

migrate-xunit-to-xunit-v3

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill processes user-controlled C# source code and MSBuild configuration files, creating a surface for indirect prompt injection where malicious instructions embedded in the code could attempt to influence the agent's behavior.
  • Ingestion points: C# source files and project configuration files (.csproj, .props, .targets, .json).
  • Boundary markers: None identified; the agent reads and processes the code and configuration directly.
  • Capability inventory: Modification of the local file system and execution of shell commands such as 'dotnet test' and 'dotnet build'.
  • Sanitization: No explicit sanitization or validation of the ingested code content is performed.
  • [COMMAND_EXECUTION]: The skill requires the execution of 'dotnet test' and 'dotnet build' to establish baselines and verify migration success. These are standard development operations but provide a powerful capability directed by the results of code analysis.
  • [EXTERNAL_DOWNLOADS]: The skill updates NuGet package references for xUnit and related extensions. These packages are fetched from standard public repositories and represent routine dependency management for .NET projects.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 02:19 AM