n8n-validation-expert
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (HIGH): The skill exhibits a high-risk capability profile because it interprets external data and possesses write permissions on that data. Ingestion points: Workflow and node configuration files (README.md). Boundary markers: Absent. There are no defined delimiters to prevent the agent from following instructions embedded within the workflow data. Capability inventory: Access to 'n8n_autofix_workflow' for modification and 'validate_workflow' for reading external data. Sanitization: Absent. No logic is described for sanitizing external inputs before they are processed by the agent's logic.
Recommendations
- AI detected serious security threats
Audit Metadata