tracekit-php-sdk
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the tracekit/php-apm package from the official vendor repository via the Composer package manager.
- [DATA_EXFILTRATION]: The SDK is configured to transmit application telemetry, including execution traces, database queries, and exception details, to the vendor's backend at app.tracekit.dev. This behavior is the intended primary function of the observability service.
- [PROMPT_INJECTION]: The skill establishes an indirect prompt injection surface as it processes untrusted data from the application environment.
- Ingestion points: Untrusted data enters the agent context through HTTP request parameters, database results, and exception messages processed in index.php and TracekitPDO.
- Boundary markers: No explicit delimiters or specific instructions are provided to the agent to disregard instructions embedded within the captured telemetry data.
- Capability inventory: The skill enables network communication to the TraceKit backend and programmatic state capture via the SnapshotClient in src/Breakpoints.php.
- Sanitization: No explicit sanitization or filtering logic is included in the implementation examples to validate external content before processing.
Audit Metadata