obsidian-summarize

Pass

Audited by Gen Agent Trust Hub on May 26, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local Python script create_summary.py to handle data processing and file creation within the Obsidian vault.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to the ingestion of unsanitized external data.
  • Ingestion points: External paper data (title, abstract, etc.) are ingested via CLI arguments in scripts/create_summary.py.
  • Boundary markers: No delimiters are used in templates/paper_summary.md to isolate external content from the note structure.
  • Capability inventory: The skill possesses file-writing capabilities to the local Obsidian vault.
  • Sanitization: No input validation or escaping is applied to ensure external content does not interfere with the Markdown or YAML structure.
Audit Metadata
Risk Level
SAFE
Analyzed
May 26, 2026, 02:48 PM
Security Audit — agent-trust-hub — obsidian-summarize