tracekit-laravel-sdk
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate instructions for setting up application performance monitoring. The referenced domain (tracekit.dev) and packages (tracekit/laravel-apm) belong to the established vendor infrastructure.
- [EXTERNAL_DOWNLOADS]: The skill uses
composer require tracekit/laravel-apmto install the SDK. This is a standard practice for installing official vendor libraries in PHP projects. - [CREDENTIALS_UNSAFE]: The instructions explicitly forbid hardcoding API keys and correctly direct the user to use Laravel's
.envsystem for sensitive credentials, which is a security best practice.
Audit Metadata