php-laravel
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill focuses on providing secure coding standards and architectural patterns for PHP/Laravel applications.
- [SAFE]: Explicitly warns against security vulnerabilities, such as mass assignment issues (recommending
$fillableover$guarded = []) and trusting third-party API responses. - [SAFE]: Includes a dedicated security hardening reference covering session security (HttpOnly, SameSite), CSRF protection, secure HTTP headers (CSP, HSTS), and input/file validation.
- [SAFE]: Recommends the use of official security tools like
composer auditto detect vulnerabilities in dependencies. - [SAFE]: Provides patterns for production resilience, including fail-fast configuration validation and health checks.
Audit Metadata