laravel-quality
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing standard PHP development packages via Composer. All referenced packages are well-known and reputable libraries within the PHP/Laravel ecosystem, such as static analysis tools (PHPStan, Larastan) and code formatters (Laravel Pint).
- [EXTERNAL_DOWNLOADS]: The GitHub Actions workflow example utilizes well-known community actions, specifically
shivammathur/setup-php, to configure the PHP environment in CI/CD pipelines. - [COMMAND_EXECUTION]: The skill provides instructions for executing local tool binaries (e.g.,
./vendor/bin/phpstan,./vendor/bin/pint) and defines Composer scripts for common development tasks. These represent standard, non-malicious development workflows. - [COMMAND_EXECUTION]: Includes a configuration for the
npx concurrentlycommand to run multiple local development services, which is a common and safe practice in modern web development.
Audit Metadata