php-testing
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its documentation fetching capabilities combined with high-privilege tool access.\n
- Ingestion points: The skill instructs the agent to use
WebSearchandWebFetchto retrieve live documentation from external websites (SKILL.md).\n - Boundary markers: No specific delimiters or safety instructions are provided to distinguish between retrieved documentation and agent instructions.\n
- Capability inventory: The skill allows access to powerful tools including
Bash,Write, andEdit, which could be exploited if malicious instructions are present in the fetched content (SKILL.md).\n - Sanitization: The skill lacks mechanisms to sanitize or validate content retrieved from external sources before processing.
Audit Metadata