n8n-automation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of markdown documentation (README.md, SKILL.md, and references/api-endpoints.md). No executable scripts (.py, .js, .sh), binaries, or configuration files that could execute code are included.
- [Indirect Prompt Injection] (SAFE): The skill documentation outlines methods for retrieving data from external n8n instances (e.g., workflow definitions and execution logs). While processing external data is an attack surface for indirect prompt injection, this skill is informational and provides no automated logic that could be exploited. 1. Ingestion points: n8n API endpoints for workflows and executions. 2. Boundary markers: Not applicable as the content is restricted to markdown examples. 3. Capability inventory: curl command examples for API interaction. 4. Sanitization: Not applicable to documentation templates.
Audit Metadata