n8n-validation-expert
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely educational, providing structured guidance and an error catalog for n8n workflow validation.
- [INDIRECT_PROMPT_INJECTION]: The skill instructs the agent on how to process and interpret output from validation tools (
validate_node,validate_workflow). While this constitutes a data ingestion surface, the risk is negligible as the skill guides the user toward standard fixes and provides a decision framework for security warnings. - [REMOTE_CODE_EXECUTION]: The skill mentions platform-specific tools like
n8n_autofix_workflowandn8n_update_partial_workflow. These are legitimate n8n management tools, and the skill provides appropriate context for their safe use, including confidence thresholds for auto-fixes. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against hardcoding credentials (e.g., in
FALSE_POSITIVES.md) and recommends using the built-in n8n credential system, demonstrating a positive security posture.
Audit Metadata