wordpress-core
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill content is purely instructional, focusing on best practices for WordPress core development. It provides clear guidance on security patterns to prevent common vulnerabilities.
- [SAFE]: Code examples demonstrate the correct use of WordPress security APIs, such as
sanitize_text_field,esc_html, andwp_verify_nonce, which are essential for building secure plugins. - [SAFE]: The database interaction section correctly emphasizes the use of
$wpdb->prepare()to prevent SQL injection attacks, marking it as a critical requirement for safe development. - [SAFE]: No patterns of prompt injection, data exfiltration, obfuscation, or unauthorized remote code execution were identified in the metadata or the body of the skill.
Audit Metadata