wiki-rebuild

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill performs destructive file system operations, specifically clearing directories like 'concepts/', 'entities/', and 'projects/' during a rebuild or restore. These actions are primary functions of the skill and are mitigated by mandatory archiving procedures and user confirmation requirements.
  • [DATA_EXPOSURE]: The skill reads from and writes to the user's local file system (Obsidian Vault). This behavior is consistent with its stated purpose of wiki management.
  • [PROMPT_INJECTION]: Indirect prompt injection risk is present as the skill processes archives and metadata which could contain instructions from previously ingested untrusted data.
  • Ingestion points: Reads archive-meta.json, .manifest.json, and entire wiki directories during restoration.
  • Boundary markers: None present.
  • Capability inventory: Recursive file deletion and file copy operations within the designated vault path.
  • Sanitization: No specific sanitization of file content is described during the restoration process.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 12:14 AM
Security Audit — agent-trust-hub — wiki-rebuild