Skills
skills/asif2bd/wordpress-publishing-skill-for-claude/wordpress-publisher/Gen Agent Trust Hub

wordpress-publisher

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill demonstrates high security standards by enforcing HTTPS for all WordPress REST API interactions and specifically requiring the use of Application Passwords, which limits the risk associated with API authentication.
  • [PROMPT_INJECTION]: The skill instructions in SKILL.md and metadata fields do not contain any patterns attempting to override safety filters, bypass instructions, or extract system prompts.
  • [DATA_EXFILTRATION]: The skill is designed to transmit content only to the WordPress URL provided by the user. No unauthorized access to local sensitive files (e.g., SSH keys, environment variables) or external non-whitelisted domains was detected.
  • [COMMAND_EXECUTION]: The provided Python scripts rely on the 'requests' library for network operations and do not use subprocesses, shell commands, or other risky execution methods.
  • [EXTERNAL_DOWNLOADS]: The skill's dependencies are limited to the well-known and trusted 'requests' library. No remote script execution or unverified package installations were found.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 09:21 PM