typo3-security
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides defensive security configurations and best practices for TYPO3.
- File system commands (chown, chmod) are standard procedures for hardening a web server environment.
- Configuration examples for settings.php use placeholders for sensitive fields like encryption keys and host patterns.
- SQL Injection prevention section correctly advocates for the use of QueryBuilder and prepared statements.
- XSS prevention section correctly emphasizes Fluid's auto-escaping and the risks of raw output.
- PHP 8.4 features like asymmetric visibility and property hooks are used appropriately to demonstrate better data encapsulation and validation.
- All external links target official documentation (typo3.org, php.net) or internal skill references.
Audit Metadata