wiki-manifest-add
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill suggests an installation command (
npx skills add dev-goraebap/agent-wiki-hub) to the user if the required wiki environment is missing. This is a legitimate setup instruction for the vendor's toolset. - [PROMPT_INJECTION]: The skill accepts user-provided strings for document types, scopes, and tags which are written to a
.wiki/wiki-manifest.yamlfile. This constitutes an indirect prompt injection surface where malicious data could be placed in the manifest; however, the skill includes a validation step to ensure the resulting YAML is well-formed before finalizing changes.
Audit Metadata