PHP Modern Best Practices & Laravel Helper
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill uses instructional language to guide the AI agent's behavior for PHP tasks. It does not contain patterns meant to bypass safety filters, ignore previous instructions, or extract the system prompt.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths, hardcoded credentials, or network operations are present. The skill does not attempt to access or transmit user data.
- Remote Code Execution (SAFE): There are no commands for downloading or executing remote scripts (e.g., curl, wget, bash). It mentions tools like composer and pest only as context for activation.
- Obfuscation (SAFE): No Base64 encoding, zero-width characters, homoglyphs, or other obfuscation techniques are used.
- Security Posture (SAFE): The skill specifically instructs the agent to enforce security best practices such as input validation, CSRF/XSS protection, and the avoidance of dangerous functions like eval() or system().
Audit Metadata