wordpress-elementor
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [Command Execution] (SAFE): The skill utilizes standard wp-cli and playwright-cli commands to perform administrative tasks on WordPress sites. These actions are within the scope of its stated purpose.
- [Indirect Prompt Injection] (LOW): The skill ingests data from the WordPress database (e.g., _elementor_data), creating a surface for potential indirect prompt injection. This is an inherent risk of the skill's primary function. 1. Ingestion points: SKILL.md (Step 1 and Step 4 via wp post meta get). 2. Boundary markers: Absent. 3. Capability inventory: WP-CLI command execution and browser automation via playwright-cli. 4. Sanitization: None detected.
Audit Metadata