ClawHub

php-laravel

v2.53.0

Modern PHP 8.4 and Laravel patterns: architecture, Eloquent, queues, testing. Use when working with Laravel, Eloquent, Blade, artisan, PHPUnit, PHPStan, or b...

0· 18·0 current·0 all-time
byIlia Alshanetsky@iliaal
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description claim guidance for PHP 8.x and Laravel patterns; the included SKILL.md and reference docs contain Laravel-specific architecture, Eloquent, routing, testing and related guidance — all consistent with the stated purpose.
Instruction Scope
Instructions are prose and code examples for development and testing best practices. There are no runtime commands, no references to reading arbitrary system files or credentials, and no instructions to transmit data to external endpoints. The only metadata 'paths: "**/*.php"' simply scopes the skill to PHP files and is appropriate for a coding-style skill.
Install Mechanism
No install spec and no code files beyond documentation — the skill is instruction-only, which is the lowest-risk install profile.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The documentation references typical Laravel config keys as examples (e.g., SESSION settings) but does not request access to secrets or external services.
Persistence & Privilege
The skill is not always-on and does not request system-level persistence. Autonomous invocation by the agent is enabled (default) but there is no indication this skill would misuse that capability; this is normal for skills.
Assessment
This skill is an instruction-only style and testing guide for Laravel and PHP and appears internally consistent and low-risk: it asks for nothing sensitive and contains only examples and best-practice prose. Two practical notes before installing: (1) the skill's source/homepage is unknown — if provenance and maintainership matter to you, prefer skills with a verifiable homepage or known author; (2) because the agent may invoke skills autonomously (platform default), review future versions for any added install steps or environment variable requirements before granting access — those would change the risk profile.

Like a lobster shell, security has layers — review code before you run it.

latestvk976mzvxewt8fy4bmc82yx64ad84a1cr

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments