Skills
skills/jezweb/claude-skills/wordpress-elementor/Gen Agent Trust Hub

wordpress-elementor

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses WP-CLI (wp @site) to read and write WordPress post metadata and perform search-replace operations. This is a core function for WordPress site management.
  • [COMMAND_EXECUTION]: Utilizes playwright-cli to perform visual editing tasks within the Elementor interface through browser automation.
  • [PROMPT_INJECTION]: As the skill reads page content from external WordPress sites via wp post meta get, it is subject to indirect prompt injection if the content contains malicious instructions intended to influence the agent's behavior during the editing process.
  • [DATA_EXFILTRATION]: While the skill reads data from a remote WordPress site, it does so using legitimate administrative tools and does not exhibit patterns of unauthorized data transfer to third-party domains.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 07:46 PM
Security Audit — agent-trust-hub — wordpress-elementor