aspireify
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- Project Orchestration and Code Generation: The skill generates executable C# or TypeScript code to model application resources. While executing dynamically generated code is a security consideration, it is the primary function of this orchestration tool and follows official patterns.
- Automated Dependency Installation: The skill uses package managers (npm, pip, dotnet) to fetch and install Aspire and OpenTelemetry integrations. These downloads target official, well-known registries to extend the capabilities of the development environment.
- Configuration and Secret Migration: The skill reads local configuration files, including .env and user secrets, to migrate them into the Aspire parameter system. This process centralizes sensitive information into secure local storage for development.
- Local Environment Modification: Tools like
aspire certs trustare used to manage development certificates for HTTPS support. These operations are standard for establishing a functional and secure local development environment.
Audit Metadata