nocobase-workflow-manage
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill enables the creation and management of workflows that ingest untrusted data from external sources such as webhooks (references/triggers/webhook.md) or database collection events (references/triggers/collection.md).
- Ingestion points: Data enters the workflow context via Webhook headers/body/query and Collection record fields.
- Boundary markers: No specific instructions are provided to use delimiters or 'ignore' instructions when processing this external data.
- Capability inventory: Workflows can execute custom JavaScript (references/nodes/script.md), perform SQL operations (references/nodes/sql.md), make HTTP requests (references/nodes/request.md), and delete records (references/nodes/destroy.md).
- Sanitization: No explicit sanitization or validation steps are mandated before interpolating untrusted data into script contents or query parameters.
- [COMMAND_EXECUTION]: The skill instructs the agent to execute local utility scripts for UID generation using the node command (e.g., 'node <resolved-path-to-uid.js>') as part of the configuration process for certain workflow nodes and triggers (references/nodes/approval.md, references/triggers/approval.md). The scripts are expected to be located within the vendor's nocobase-utils repository.
Audit Metadata