workflow-maintenance-log
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides logic for determining which
planemoCLI commands to execute (e.g.,planemo testvsplanemo workflow_test_on_invocation) based on historical test results. These commands are standard utilities for Galaxy workflow development. - [DATA_EXPOSURE]: Resolves the local environment variable
$OBSIDIAN_VAULTto identify the storage path for logs. It performs local file system operations to create and append to markdown files within the specified Obsidian directory structure. - [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external files such as Galaxy workflows (
.ga) and test definitions (-tests.yml) to generate log entries. While these files are untrusted inputs, the skill's instructions focus on auditing metadata (labels, versions, constraints) rather than executing logic from the file contents, minimizing the risk surface.
Audit Metadata