laravel-architecture
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [General Security] (SAFE): The skill provides high-quality templates for Laravel development that adhere to framework conventions and security best practices, such as using Form Requests for validation and avoiding .env commits.
- [Capability Surface] (SAFE): Documentation for the Process facade and Envoy (SSH) is provided for legitimate administrative tasks. No malicious shell commands or automated remote executions are present.
- [Indirect Prompt Injection] (SAFE): The skill includes documentation for the Model Context Protocol (MCP) for AI integration. It correctly identifies the attack surface and recommends standard Laravel mitigations: input validation, authorization via Gates/Policies, and proper tool annotations.
- [Prompt Injection] (SAFE): The 'Agent Workflow' in the main skill file is a structured instruction for a specific agentic environment (TeamCreate) and does not attempt to bypass safety filters or ignore system instructions.
Audit Metadata