Skills
skills/0xshe/php-code-audit-skill/php-symfony-audit/Gen Agent Trust Hub

php-symfony-audit

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill logic is entirely focused on static analysis and project auditing. It provides instructions for an agent to manually inspect project files and report on security risks without automated execution of untrusted code.
  • [PROMPT_INJECTION]: The skill processes untrusted source code and configuration files from a user-provided directory, creating an indirect prompt injection surface.
  • Ingestion points: Project files read from the user-specified source_path.
  • Boundary markers: No explicit delimiters are defined to separate code content from the agent's instructions.
  • Capability inventory: The skill writes analysis results to the local filesystem; no network access or shell execution is utilized.
  • Sanitization: No sanitization is performed on the ingested code content.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 02:34 AM
Security Audit — agent-trust-hub — php-symfony-audit