save-napkin-note
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill is designed to operate within a local vault environment and explicitly mandates a human-in-the-loop approval process ('filing plan') before performing any destructive or additive file operations.
- [PROMPT_INJECTION]: The skill processes untrusted input (capture material) to generate structured notes. This creates a surface for indirect prompt injection. However, the risk is effectively mitigated by the skill's instruction to pause and request user confirmation before creating or integrating content into the vault.
- [COMMAND_EXECUTION]: Documentation provides examples of shell commands (using the 'obsidian' CLI) to manage file properties and paths. These operations are restricted to the local filesystem and governed by the user's approval of the proposed filing plan.
Audit Metadata