package-development
Fail
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE]: The skill provides standard documentation and code templates for developing Bagisto packages. No malicious behavior or unsafe practices were detected.
- [EXTERNAL_DOWNLOADS]: The skill mentions installing the 'bagisto/bagisto-package-generator' package via Composer. As 'bagisto' is the skill author and platform vendor, this is a trusted resource.
- [COMMAND_EXECUTION]: Uses routine development commands such as 'php artisan package:make' and 'composer dump-autoload' which are appropriate for the skill's stated purpose.
- [SAFE]: The 'Proxy.ph' security alert identified by automated scanners is a false positive. The skill contains references to 'Proxy.php' files and 'ModelProxy' classes, which are standard components of the Bagisto framework's architecture.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata