kb-query
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill processes data from a local Obsidian vault (ingestion points:
wiki/directory and../obsidian-notes-karpathy/). This creates a surface for indirect prompt injection; however, no boundary markers or sanitization are required as the skill's capabilities are restricted to local file operations and specialized vault tools. The risk is considered safe as it is inherent to the skill's primary purpose of information retrieval. - [COMMAND_EXECUTION]: Utilizes
obsidian-cliandobsidian-canvas-creatorfor vault-aware search and visualization. These tools are used within their intended functional scope to manage markdown files and knowledge graphs. - [DATA_EXFILTRATION]: All synthesized reports, articles, and logs are stored locally in the
outputs/orwiki/directories. No network operations, external API calls, or exfiltration patterns were detected.
Audit Metadata