The Agent Skills Directory

[EXTERNAL_DOWNLOADS] (LOW): The skill documentation suggests using the Docker image 'ghcr.io/devgine/composer-php' for managing PHP version conflicts. While common in development workflows, this is a third-party dependency from an organization not listed as a trusted external source.\n- [COMMAND_EXECUTION] (SAFE): The skill instructs the agent on how to run standard industry tools such as PHP_CodeSniffer, PHPStan, and Rector. These tools are executed locally for the purpose of code analysis and refactoring, which aligns with the skill's primary function.\n- [PROMPT_INJECTION] (SAFE): The skill inherently possesses a surface for indirect prompt injection as it processes and refactors external source code (PHP, JS, CSS). No malicious patterns or bypasses were detected in the skill's own instructions, and the risk is considered a standard part of development-related capabilities.

code-quality