obsidian
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
obsidiancommand-line interface along with standard Unix tools such assedandrgto perform file operations, search content, and manage vault configurations within the local filesystem. - [INDIRECT_PROMPT_INJECTION]: The skill reads content from external Markdown files and vault data, creating a potential surface for indirect prompt injection if those files contain malicious instructions. However, the skill provides specific safety constraints, such as prohibiting bulk rewrites and unauthorized deletions, to mitigate risks associated with automated edits.
Audit Metadata