Skills
skills/ar9av/obsidian-wiki/wiki-export/Gen Agent Trust Hub

wiki-export

Pass

Audited by Gen Agent Trust Hub on May 6, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill generates an HTML file that references the vis-network library from the unpkg.com CDN to provide interactive graph visualizations.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it processes untrusted data from markdown files and renders it in an HTML visualization. Specifically, the generated graph.html uses innerHTML to display frontmatter fields like summary and label. If a file contains malicious scripts in these fields, they could execute in the user's browser when the visualization is opened.
  • Ingestion points: Markdown files (.md) within the Obsidian vault (SKILL.md).
  • Boundary markers: None; content is directly extracted and processed.
  • Capability inventory: File system write access to create the wiki-export/ directory and output files (SKILL.md).
  • Sanitization: No sanitization or escaping is performed on the extracted frontmatter content before it is interpolated into the HTML template (SKILL.md).
Audit Metadata
Risk Level
SAFE
Analyzed
May 6, 2026, 08:38 PM