vault-process
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests data from the
raw/sources/directory. 1. Ingestion points: files located inraw/sources/. 2. Boundary markers: none specified to delimit processed data. 3. Capability inventory: file system modifications innotes/andprojects/, file movement for archival, and execution ofvault-qmd. 4. Sanitization: none mentioned. - [COMMAND_EXECUTION]: The skill executes the local command
vault-qmd --mode apply-safeto refresh indices after processing durable pages.
Audit Metadata