obsidian-canvas
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the
findcommand to search for.mdand.canvasfiles within a specified vault path. This is a benign utility operation designed to help the agent verify file existence and resolve paths when creating a visual workspace. - [DATA_EXPOSURE]: While the skill accesses file names in the user's vault to create the canvas dashboard, it does not contain any network operations (like
curlorwget) to transmit this information externally. - [SAFE]: No evidence of prompt injection, obfuscation, remote code execution, or persistence mechanisms was found. The skill's behavior is consistent with its stated purpose of managing Obsidian Canvas files.
Audit Metadata