php-pro
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill does not contain instructions to bypass safety filters, ignore previous constraints, or reveal system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were identified.
- [Obfuscation] (SAFE): No Base64 encoding, zero-width characters, or homoglyphs were found in the skill content.
- [Remote Code Execution] (SAFE): There are no commands that download or execute external scripts, and no unauthorized package manager usage.
- [Indirect Prompt Injection] (SAFE): While the skill processes user input for code generation, it explicitly directs the agent to implement security protections (validation, authentication, XSS/SQLi protection) and lacks dangerous capabilities like direct file writing or network access.
Audit Metadata