typo3-fractor
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTIONNO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of TYPO3 migration tools like a9f/typo3-fractor and ssch/typo3-rector from standard public registries.
- [COMMAND_EXECUTION]: The documentation describes running shell commands such as composer require and vendor/bin/fractor process to perform codebase migrations.
- [PROMPT_INJECTION]: The skill requires the agent to ingest and analyze potentially untrusted project files (e.g., TypoScript, FlexForms), which creates a surface for indirect prompt injection. Evidence: Ingestion points are the project directories defined in the fractor.php examples in SKILL.md. No boundary markers or sanitization steps are provided in the instructions for the agent to use while interpreting these external files. The agent's capabilities include executing shell commands and modifying the filesystem based on these instructions.
- [NO_CODE]: The skill consists purely of documentation and metadata; it does not distribute any scripts or binaries.
Audit Metadata