canva-automation
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns such as obfuscation, credential theft, or unauthorized command execution were detected.- [NO_CODE]: The skill does not contain any executable code, scripts, or binaries; it consists entirely of markdown documentation and tool usage guidelines.- [PROMPT_INJECTION]: The skill defines workflows that ingest untrusted data from the Canva platform, which represents a surface for indirect prompt injection.
- Ingestion points: Design metadata and template data ingested via CANVA_LIST_USER_DESIGNS and CANVA_ACCESS_USER_SPECIFIC_BRAND_TEMPLATES_LIST.
- Boundary markers: No delimiters or ignore-instructions warnings are specified for the ingested content.
- Capability inventory: The skill can fetch content from arbitrary URLs via CANVA_CREATE_ASSET_UPLOAD_JOB and modify/export designs.
- Sanitization: No sanitization or validation of external content is mentioned.
Audit Metadata