workflow-maintenance-log

Pass

Audited by Gen Agent Trust Hub on Jun 14, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides logic for determining which planemo CLI commands to execute (e.g., planemo test vs planemo workflow_test_on_invocation) based on historical test results. These commands are standard utilities for Galaxy workflow development.
  • [DATA_EXPOSURE]: Resolves the local environment variable $OBSIDIAN_VAULT to identify the storage path for logs. It performs local file system operations to create and append to markdown files within the specified Obsidian directory structure.
  • [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external files such as Galaxy workflows (.ga) and test definitions (-tests.yml) to generate log entries. While these files are untrusted inputs, the skill's instructions focus on auditing metadata (labels, versions, constraints) rather than executing logic from the file contents, minimizing the risk surface.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 14, 2026, 07:48 PM
Security Audit — agent-trust-hub — workflow-maintenance-log