Skills
skills/chuccv/ddev-skill/ddev-magento/Gen Agent Trust Hub

ddev-magento

Pass

Audited by Gen Agent Trust Hub on Mar 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill enables the execution of various DDEV and Magento CLI commands, such as ddev start, ddev ssh, ddev exec, and ddev magento. These are legitimate operations for managing local containerized development environments.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates downloading official DDEV add-ons and Magento project code. These actions utilize well-known services (DDEV's GitHub and Magento's repository) and are part of the intended installation and setup workflow.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to its interaction with external data sources during common development tasks.
  • Ingestion points: The skill processes data from ddev logs, ddev describe output, and project configuration files like .ddev/config.yaml and env.php.
  • Boundary markers: No specific delimiters or instructions to ignore embedded commands within ingested data are present.
  • Capability inventory: The skill allows significant host/container interaction via ddev ssh, ddev exec, and database management tools.
  • Sanitization: No explicit data sanitization or validation logic is defined for the content read from logs or configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 11, 2026, 03:17 PM