composer-dependencies
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill instructions create an attack surface for indirect prompt injection.\n
- Ingestion points: Instructions in SKILL.md (Read the Changelog) and update-workflow.md (Step 5) direct the agent to fetch external data by searching for package changelogs and upgrade guides.\n
- Boundary markers: There are no instructions to use delimiters or explicit warnings to ignore instructions within the fetched data.\n
- Capability inventory: The skill utilizes shell command execution (composer update, composer install) which could be influenced by malicious instructions in external content.\n
- Sanitization: The skill lacks instructions for sanitizing or validating external content before it is processed by the agent.\n- [COMMAND_EXECUTION]: The skill facilitates the execution of standard dependency management commands.\n
- It utilizes composer to manage dependencies, which modifies the file system and may execute package-defined scripts during installation.\n- [EXTERNAL_DOWNLOADS]: The skill recommends using well-known, trusted security tools.\n
- It suggests roave/security-advisories and composer-unused, which are standard utilities within the PHP community and do not represent a security risk when used as described.
Audit Metadata