php-security
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill serves as a reference for PHP security standards, promoting the use of PDO for database interactions, password_hash with Argon2id for authentication, and proper output escaping. No suspicious behaviors such as network exfiltration, credential harvesting, or unauthorized command execution were detected.\n- [PROMPT_INJECTION]: Analysis of potential indirect prompt injection surface: Ingestion points: PHP source files (SKILL.md). Boundary markers: Absent from the instructions. Capability inventory: Static advice and code snippet generation (no active scripts). Sanitization: Not applicable as the skill provides guidance rather than processing untrusted runtime data.
Audit Metadata