php-api
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Overall Assessment (SAFE): No malicious patterns or security vulnerabilities were identified in the analyzed files. The skill primarily consists of reference documentation and code samples.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file access, or unauthorized network operations were found. Code examples correctly use placeholders for secrets.
- Unverifiable Dependencies & RCE (SAFE): The skill does not perform remote downloads or execute untrusted code. The included Python validation script uses secure parsing methods (yaml.safe_load).
- Indirect Prompt Injection (SAFE): The skill does not define high-privilege tools that process external data, minimizing the risk of indirect instruction injection.
Audit Metadata