As long as you are using official Microsoft install media downloaded from Microsoft (or verify the hash to ensure what you downloaded matches the official Microsoft isos) then you should be fine.

MAS is just a PowerShell script you run after install. It’s open source, and PowerShell scripts aren’t compiled, so you can examine it yourself to see what it’s doing. It tricks Microsoft servers into issuing your hardware an official “free upgrade” license key. The one I’m familiar with as reliable is MASgrave.

That’s not an 100% guarantee that it couldn’t be doing anything shady, but it would be incredibly hard for it to hide anything if it was.

i have used the MAS script probably 20+ times. for my family, friends, also my own computers and virtual machine back when i still used windows. no complaints with it, 100% safe.

Probably not any more unsafe than Windows in general. Microsoft already steals all your data, so not sure why you’d be more scared of a script that you can inspect to know exactly what it does

Other people have made accurate posters here about MAS, but if you are concerned you can always set up a KMS server in docker.

MAS is open-source meaning anyone with the skill can verify what the powershell code does. This does not mean it’s absolutely safe and trustworthy but does give it a big plus.

(the way I understand it is that) It also uses a loophole in the free upgrades from older win versions to 10/11 to get you a valid license from Windoze servers directly - it is not a keygen or cracker.

So, I will vouch for MASgrave but care has to be taken to download it from the official site/repository.