php-laravel
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues were detected across the analyzed files. The skill provides instructional content and local validation logic.
- [COMMAND_EXECUTION] (SAFE): The
scripts/validate.pyscript is used for structural and configuration integrity checks. It usesyaml.safe_load()for parsing and limits its operations to checking the existence of skill-specific files and directories. It does not spawn subprocesses or access sensitive system paths. - [PROMPT_INJECTION] (SAFE): The instructional content in
SKILL.mdand documentation files follows standard patterns for AI agent skills and does not contain any bypass attempts, role-play injections, or instructions to ignore system guidelines. - [DATA_EXFILTRATION] (SAFE): There are no network operations or access to sensitive user data (credentials, SSH keys, etc.) within the skill scripts or configuration.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill does not perform any remote package installations or download external scripts at runtime.
Audit Metadata