Skills
skills/dokhacgiakhoa/antigravity-ide/obsidian-clipper-template-creator/Gen Agent Trust Hub

obsidian-clipper-template-creator

Pass

Audited by Gen Agent Trust Hub on Apr 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the agent to use a WebFetch tool to retrieve the content of user-provided URLs. This is used to analyze the page structure (Schema.org, Meta tags, CSS selectors) to ensure the clipper template is accurate, as described in SKILL.md and references/analysis-workflow.md.
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection because it processes arbitrary data from the internet without sufficient isolation.
  • Ingestion points: External HTML and JSON content retrieved from URLs via the WebFetch tool.
  • Boundary markers: Absent. The instructions do not define delimiters for the fetched content or include warnings to the agent to ignore any embedded commands within the fetched data.
  • Capability inventory: The skill allows reading local template files from Templates/Bases/ and performing network operations via WebFetch.
  • Sanitization: There is no evidence of sanitization or filtering applied to the external content before it is analyzed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 8, 2026, 02:10 PM