web-api
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is instructional in nature and focuses on promoting secure coding practices for C# and ASP.NET Core.
- [DATA_EXPOSURE]: The skill explicitly warns against common data exposure risks, such as returning database entities that contain sensitive fields (e.g., password hashes). It provides patterns for using Data Transfer Objects (DTOs) to prevent accidental information leakage.
- [CREDENTIALS_UNSAFE]: The skill identifies hardcoded API keys and secrets as a major anti-pattern and provides examples of using the Options pattern and configuration-driven approaches to handle secrets securely.
- [COMMAND_EXECUTION]: No dangerous command execution or shell injection vectors were detected. All code examples are static C# snippets for educational purposes.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns, external script downloads, or dynamic code evaluation techniques were identified.
- [PROMPT_INJECTION]: The instructions do not contain any attempt to override system prompts or bypass AI safety guidelines.
Audit Metadata