skills/simota/agent-skills/canvas/Gen Agent Trust Hub

canvas

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were detected in the skill instructions or reference files.
  • [SAFE]: The skill's primary function is to transform code and specifications into visual diagrams, and all identified behaviors are consistent with this purpose.
  • [SAFE]: The skill processes source code and documentation to generate diagrams. While this ingestion represents a surface for indirect prompt injection, the skill lacks the capabilities (like network access or command execution) to exfiltrate data or perform malicious actions, and this processing is essential to its primary purpose.
  • [SAFE]: Mentioned external tools and packages, such as @drawio/mcp, Kroki, and various static analysis helpers, are standard industry resources for visualization and code analysis and are used as references.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 01:01 AM
Security Audit — agent-trust-hub — canvas