Skills
skills/wgpsec/aboutsecurity/php-exploit-chain/Gen Agent Trust Hub

php-exploit-chain

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: References official security advisories and databases from well-known services such as Packagist (packagist.org), NVD, and GitHub Advisory to support dependency auditing.
  • [SAFE]: The skill outlines a structured methodology for security analysts to correlate individual PHP vulnerabilities (such as arbitrary file writes and local file inclusions) into comprehensive exploit chains.
  • [SAFE]: It provides guidance on auditing Composer dependencies by leveraging industry-standard tools like 'composer audit' and references public vulnerability databases.
  • [SAFE]: The instructions emphasize verifying environmental constraints and security configurations, such as 'open_basedir' and 'secure_file_priv', which are standard components of accurate vulnerability assessment.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 08:16 AM
Security Audit — agent-trust-hub — php-exploit-chain