eracms-admin-module
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local
php artisancommands to automate the generation of migrations, models, and tests. These are standard development operations. - [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by using user-supplied entity names in shell commands and file paths. 1. Ingestion points: Step 1 (gathering entity names). 2. Boundary markers: Absent. 3. Capability inventory: Command execution via Artisan in Steps 3, 4, and 9. 4. Sanitization: Absent.
- [SAFE]: No malicious obfuscation, credential theft, or unauthorized network activity was detected.
Audit Metadata