The Agent Skills Directory

[COMMAND_EXECUTION] (LOW): The skill executes the ./vendor/bin/psalm binary to perform static analysis. This is the primary function of the skill.\n- [EXTERNAL_DOWNLOADS] (LOW): The skill recommends installing vimeo/psalm via Composer. While the organization is not on the specific trusted list, Psalm is a widely used and reputable security tool.\n- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes analysis results derived from external PHP source code. Evidence Chain: (1) Ingestion points: psalm-results.json (referenced in Step 3); (2) Boundary markers: Absent; (3) Capability inventory: Subprocess execution of the Psalm binary; (4) Sanitization: Absent.

sast-psalm