company-agent-wiki-cli
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses a custom command-line tool to perform workspace setup, document indexing, and local serving. These commands are essential for the skill's intended functionality of managing a private wiki.
- [EXTERNAL_DOWNLOADS]: The skill references a package provided by the vendor to execute the CLI tool. The use of this package via npx is standard for the documented workflow.
- [PROMPT_INJECTION]: The skill ingests Markdown files with metadata which represents an attack surface for indirect prompt injection.
- Ingestion points: Markdown files located in the local workspace registered by the user.
- Boundary markers: Uses standard YAML front matter delimiters (three dashes) to separate metadata from content.
- Capability inventory: The skill can read/write files, manage a Git repository, and start a local web server via the CLI tool.
- Sanitization: No specific sanitization methods for the Markdown content are described in the instructions.
Audit Metadata