php-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOW
Full Analysis
- SAFE (SAFE): No security risks identified. The content is educational documentation for PHP developers.
- INDIRECT_PROMPT_INJECTION (LOW): As a reference library, the skill provides static data to the agent. No logic exists to process untrusted external data in a way that would trigger capabilities like file writes or network requests.
- EXTERNAL_DOWNLOADS (LOW): The documentation mentions PHP development tools like PHPStan and Psalm, which are standard, trusted static analysis tools for the PHP ecosystem. No automated or forced downloads are present.
Audit Metadata