aspnet-auth-advanced
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive and security-focused guidance for ASP.NET Core developers. It includes code snippets for JWT validation, refresh token rotation with hashing, and multi-scheme authentication.
- [EXTERNAL_DOWNLOADS]: The skill references official NuGet packages from Microsoft (e.g., Microsoft.AspNetCore.Authentication.Google) and well-known community projects (OpenIddict, Duende IdentityServer). These references are standard for the described functionality.
- [SAFE]: The skill explicitly warns against security anti-patterns, such as hardcoding secrets in configuration files, storing raw refresh tokens, and ignoring secure cookie flags (HttpOnly, Secure, SameSite).
- [SAFE]: Documentation links point to trusted official sources, primarily learn.microsoft.com.
Audit Metadata