Skills
skills/masterfermin02/laravel-agent-skill/laravel-best-practices/Gen Agent Trust Hub

laravel-best-practices

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/review-diff.sh executes the git diff command. This is used to obtain code changes for the AI to review, which is a core feature of the skill.
  • [PROMPT_INJECTION]: The skill facilitates the review of external code and git diffs, establishing a surface for indirect prompt injection. A malicious actor could include instructions within the code being reviewed in an attempt to subvert the agent's instructions.
  • Ingestion points: Git diff outputs from scripts/review-diff.sh and user-provided code files.
  • Boundary markers: Not present. The skill instructions do not define specific delimiters or "ignore" instructions for the content being reviewed.
  • Capability inventory: The skill uses scripts/detect-laravel-context.php to read project configuration and scripts/review-diff.sh to execute git commands.
  • Sanitization: Not present. Content is analyzed directly for best practice compliance.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 07:41 PM