obsidian-dev
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill primarily consists of educational documentation, coding conventions, and implementation examples for the Obsidian API.
- [SAFE]: Explicitly includes safety guidelines that prohibit the agent from performing network calls, transmitting vault data, or executing git operations (commit, push, pull) without clear user disclosure and consent.
- [SAFE]: Promotes security best practices by providing detailed instructions on using Obsidian's
SecretStorageandSecretComponentfor handling sensitive information like API keys. - [SAFE]: Warns against insecure coding practices such as using
innerHTMLto prevent XSS vulnerabilities, aligning with official Obsidian plugin review standards. - [SAFE]: Instructions regarding build workflows (
pnpm build) and repository management are contextual to the development purpose and include constraints to ensure the agent remains under user control.
Audit Metadata