Skills
skills/ar9av/obsidian-wiki/pi-history-ingest/Gen Agent Trust Hub

pi-history-ingest

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: Uses the find utility to discover session logs in the local filesystem and the qmd tool to update the vault's search index.
  • [PROMPT_INJECTION]: Processes untrusted data from historical session logs which could potentially contain adversarial content or instructions from past interactions.
  • Ingestion points: Session JSONL files located in ~/.pi/agent/sessions/.
  • Boundary markers: No specific delimiters or "ignore" instructions are defined for the parsing of log content.
  • Capability inventory: File system write access to the Obsidian vault and execution of local discovery tools (find, qmd).
  • Sanitization: Implements a strict privacy filter requiring the redaction of credentials, tokens, and sensitive identifiers before ingestion.
  • [SAFE]: Accesses local configuration files (.env, ~/.obsidian-wiki/config) and session history as required by its primary function, without any external data exfiltration patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 08:01 AM
Security Audit — agent-trust-hub — pi-history-ingest