wiki-lint
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses standard shell utilities including
grep,sort,comm, andwcto analyze the vault's structure. In the 'Synthesis Gaps' check, concept names derived from note titles are interpolated into a shell command string. While this is a functional requirement for the audit, it represents a potential command injection surface if note titles contain shell metacharacters. - [PROMPT_INJECTION]: The skill processes the entire content of a user's markdown vault, which introduces an indirect prompt injection surface. Malicious instructions embedded in a note could attempt to influence the agent's behavior during the 'lint' or 'fix' phases.
- Ingestion points: All
.mdfiles located in theOBSIDIAN_VAULT_PATHand theindex.md/log.mdfiles. - Boundary markers: None provided to distinguish between the agent's instructions and the content of the notes being analyzed.
- Capability inventory: File system writes (updating frontmatter, moving files), shell command execution via
grepandbash. - Sanitization: No specific sanitization logic is mentioned for handling note content before processing or interpolation into commands.
Audit Metadata