Skills
skills/ar9av/obsidian-wiki/obsidian-wiki-ingest/Gen Agent Trust Hub

obsidian-wiki-ingest

Pass

Audited by Gen Agent Trust Hub on May 9, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted source documents (Markdown, PDFs, text, images) to update wiki pages. \n
  • Ingestion points: Processes files from OBSIDIAN_SOURCES_DIR and _raw/ as specified in SKILL.md. \n
  • Boundary markers: There are no defined delimiters or instructions for the AI to ignore instructions embedded within the source documents. \n
  • Capability inventory: The skill executes a shell script (scripts/ingest-wiki.sh) and performs file system writes to update the wiki vault and manifest files. \n
  • Sanitization: The instructions do not include steps to sanitize or validate the content of the ingested files before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 9, 2026, 02:16 PM