Skills
skills/adeonir/agent-skills/session-notes/Gen Agent Trust Hub

session-notes

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the obsidian CLI to perform vault operations such as creating notes (obsidian create), appending content (obsidian append), and searching (obsidian search). It includes a fallback to the Write tool if the CLI is unavailable and requires user confirmation before any write operation.
  • [EXTERNAL_DOWNLOADS]: The capture workflow allows fetching content from user-provided URLs using tools like WebFetch. This is used to gather information to be saved into the Obsidian vault.
  • [PROMPT_INJECTION]: The skill identifies and mitigates indirect prompt injection risks when processing external content. (1) Ingestion points: Untrusted data is ingested via URLs and file attachments in references/capture.md. (2) Boundary markers: The skill structures content into defined markdown sections and frontmatter. (3) Capability inventory: The skill possesses the ability to write to the local file system using both the Obsidian CLI and the Write tool. (4) Sanitization: The skill contains explicit instructions in SKILL.md and references/capture.md to treat fetched data solely as reference material and to discard any embedded directives.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 06:58 PM