Skills
NYC
skills/automattic/agent-skills/wp-plugin-development/Gen Agent Trust Hub

wp-plugin-development

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION] (SAFE): The skill executes local Node.js scripts (detect_wp_project.mjs and detect_plugins.mjs) to identify project structure and plugin headers. These scripts are part of the skill's own directory or internal triage library and do not involve executing untrusted input from external sources.
  • [PROMPT_INJECTION] (SAFE): The instructions are purely functional and pedagogical. No patterns aiming to override agent safety or extract system prompts were detected.
  • [DATA_EXFILTRATION] (SAFE): No network operations or hardcoded credentials were found. The skill operates on the local filesystem within the context of a WordPress repository.
  • [EXTERNAL_DOWNLOADS] (SAFE): The skill does not perform any runtime downloads or package installations (npm, pip, etc.).
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:10 PM