Skills
skills/czlonkowski/n8n-skills/n8n-validation-expert/Gen Agent Trust Hub

n8n-validation-expert

Fail

Audited by Gen Agent Trust Hub on Feb 15, 2026

Risk Level: HIGHPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION] (HIGH): The skill facilitates an Indirect Prompt Injection attack surface.
  • Ingestion points: The skill processes n8n node configurations and workflow definitions (found in README.md examples and file structure descriptions).
  • Boundary markers: There is no evidence of delimiters or instructions to ignore embedded commands within the processed JSON/JavaScript configuration data.
  • Capability inventory: The skill guides the use of n8n_autofix_workflow, which has the capability to modify workflow logic and structure.
  • Sanitization: No sanitization or schema validation is mentioned for incoming data. A malicious workflow could contain instructions in node metadata or expressions that trick the agent into performing unauthorized modifications via the autofix tool.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 15, 2026, 08:29 PM