Skills
skills/freekmurze/dotfiles/deploying-laravel-cloud/Gen Agent Trust Hub

deploying-laravel-cloud

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill makes extensive use of the cloud CLI tool to perform infrastructure and application management tasks. Instructions emphasize using the -n flag for non-interactive execution and runtime discovery of flags.
  • [REMOTE_CODE_EXECUTION]: Includes documentation for cloud tinker and cloud command:run, which allow the agent to execute PHP code and shell commands on remote cloud environments as a core administrative feature.
  • [EXTERNAL_DOWNLOADS]: Fetches official documentation from https://cloud.laravel.com/docs/llms.txt using the WebFetch tool to improve the accuracy of its responses.
  • [DATA_EXFILTRATION]: Identifies that the CLI stores sensitive authentication tokens and preferences in ~/.config/cloud/config.json for persistent access to the Laravel Cloud API.
  • [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection as it ingests untrusted documentation from an external URL (https://cloud.laravel.com/docs/llms.txt). The skill possesses the capability to execute shell commands via the cloud CLI. No explicit boundary markers or sanitization logic for this external content are documented.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 02:39 AM