typo3-workspaces
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive technical documentation for TYPO3 CMS versioning and workspace systems, adhering to official core APIs and conventions.
- [SAFE]: Code snippets for CLI commands, services, and event listeners utilize standard TYPO3 APIs such as DataHandler and QueryBuilder with proper parameterization, protecting against SQL injection.
- [SAFE]: The documentation includes a dedicated security section addressing predictable filename risks in FAL (File Abstraction Layer) and provides multiple legitimate mitigation strategies like private storage and non-guessable naming patterns.
- [SAFE]: External dependencies and references target official TYPO3 documentation, security advisories, and well-known, trusted community resources (e.g., b13, Netresearch).
- [SAFE]: Raw SQL examples are clearly labeled for local development only and include prominent warnings against execution on production systems.
Audit Metadata