filament-plugin-scaffold
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes an internal Python script (
scaffold_filament_plugin.py) via the Bash tool. This is the intended primary function for generating code templates and does not involve arbitrary command execution. - [DATA_EXPOSURE] (SAFE): The skill does not access sensitive files, environment variables, or hardcoded credentials. It operates only within the user-defined plugin directory.
- [EXTERNAL_DOWNLOADS] (SAFE): Although the documentation references 'composer' for dependency management, these are instructions for the user to run manually and are not automated downloads performed by the skill itself.
- [PROMPT_INJECTION] (SAFE): No instructions designed to override agent behavior, extract system prompts, or bypass safety filters were found.
Audit Metadata