php-fundamentals
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION] (SAFE): No instructions attempting to override agent behavior, bypass safety filters, or extract system prompts were detected in SKILL.md or the guide files.
- [DATA_EXFILTRATION] (SAFE): No network operations (curl, wget, fetch) or access to sensitive local file paths (e.g., ~/.ssh, credentials) were found.
- [REMOTE_CODE_EXECUTION] (SAFE): No patterns involving remote script execution or piped downloads (curl|bash) are present.
- [COMMAND_EXECUTION] (SAFE): The Python script 'scripts/validate.py' performs local file system checks using standard libraries and does not invoke subprocesses or shells for arbitrary command execution.
- [DYNAMIC_EXECUTION] (SAFE): The validation script uses 'yaml.safe_load()', which prevents unsafe deserialization attacks. No use of eval() or exec() with untrusted input was identified.
- [OBFUSCATION] (SAFE): No Base64, zero-width characters, or other encoding techniques were used to hide malicious content.
Audit Metadata