Does it support modern PHP CSV processing?

Absolutely. It flags manual CSV parsing as an antipattern and provides implementations using SplFileObject combined with Generators for optimal performance.

How does it help with file system security?

The skill detects unsafe path construction and recommends using realpath() and basename() validation to protect against path traversal attacks.

How does this skill prevent Out of Memory (OOM) errors in PHP?

It identifies the use of functions like file_get_contents() on potentially large files and recommends stream-based alternatives using fopen() and fgets() to process data line-by-line.

Can it detect race conditions in PHP file writes?

Yes, it specifically looks for concurrent write patterns where flock() is missing, helping you prevent data corruption when multiple processes access the same file.

PHP File I/O Auditor

Name: PHP File I/O Auditor
Author: dykyi-roman

bydykyi-roman

•

Security & Testing

Audits PHP code for memory-efficient, secure, and reliable file I/O patterns and streaming practices.

This skill provides comprehensive auditing of PHP file operations to prevent common pitfalls such as Out-of-Memory (OOM) errors from large file reads, race conditions caused by missing file locks, and disk space exhaustion from uncleaned temporary files. It helps developers transition from basic file functions to professional streaming patterns, SplFileObject usage, and robust error handling using try/finally blocks, ensuring high-performance and secure file processing in any PHP application architecture.

Key Features

01Identifies missing file locks (flock) in concurrent write scenarios

02Flags uncleaned temporary files and leaked file handles

03Validates file path construction to prevent directory traversal vulnerabilities

04Suggests SplFileObject and Generator patterns for efficient CSV processing

05Detects full-file reads into memory that cause OOM errors

0645 GitHub stars

Use Cases

01Hardening file upload systems against race conditions and security vulnerabilities

02Refactoring legacy PHP scripts that process large CSV or log files to use memory-efficient streams

03Optimizing high-traffic applications to reduce memory footprint and disk I/O bottlenecks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add dykyi-roman/awesome-claude-code check-file-io

For use in Claude.ai and ChatGPT

Download Skill