obsidian-summarize
Pass
Audited by Gen Agent Trust Hub on May 26, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Python script
create_summary.pyto handle data processing and file creation within the Obsidian vault. - [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to the ingestion of unsanitized external data.
- Ingestion points: External paper data (title, abstract, etc.) are ingested via CLI arguments in
scripts/create_summary.py. - Boundary markers: No delimiters are used in
templates/paper_summary.mdto isolate external content from the note structure. - Capability inventory: The skill possesses file-writing capabilities to the local Obsidian vault.
- Sanitization: No input validation or escaping is applied to ensure external content does not interfere with the Markdown or YAML structure.
Audit Metadata