wp-phpstan
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified in the skill body, metadata, or scripts.
- [COMMAND_EXECUTION]: The skill guides the agent to identify and suggest execution of project-specific static analysis commands (e.g.,
composer run phpstan). The discovery process implemented inscripts/phpstan_inspect.mjsis restricted to read-only operations on standard configuration files likecomposer.jsonandphpstan.neon. - [EXTERNAL_DOWNLOADS]: The documentation suggests the use of community-standard PHP stub packages for WordPress. These references are part of the legitimate primary purpose of the skill and target well-known repositories within the PHP/WordPress development ecosystem.
Audit Metadata