skills/brycewang-stanford/awesome-agent-skills-for-empirical-research/obsidian-project-bootstrap/Gen Agent Trust Hub
obsidian-project-bootstrap
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Python interpreter to run a local utility script for repository management and vault initialization.
- [PROMPT_INJECTION]: The agent reads documentation and source code from the repository to synthesize notes, which presents a surface for indirect prompt injection.
- Ingestion points: Step 5 of SKILL.md reads files from the repository.
- Boundary markers: No explicit boundaries or instructions to ignore embedded commands are present.
- Capability inventory: The skill executes local scripts and writes to the filesystem.
- Sanitization: No specific sanitization or filtering of codebase content is mentioned.
Audit Metadata