check-serialization
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides documentation and examples for reviewing PHP code for serialization inefficiencies. It contains no active scripts or hidden malicious logic.
- [COMMAND_EXECUTION]: Several grep patterns are defined to assist the agent in searching local PHP source files. These are benign read-only operations standard for code analysis.
- [PROMPT_INJECTION]: The skill is subject to Indirect Prompt Injection if malicious instructions are present in the PHP code being analyzed. However, it does not possess capabilities that would allow such instructions to trigger dangerous actions. Ingestion points: PHP source files (SKILL.md); Boundary markers: None; Capability inventory: Local grep searches (SKILL.md); Sanitization: None.
Audit Metadata