github-mermaid-diagrams
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends downloading the official @mermaid-js/mermaid-cli package from the npm registry, a well-known service.
- [REMOTE_CODE_EXECUTION]: Utilizes npx -y to fetch and execute external code at runtime to perform diagram rendering.
- [COMMAND_EXECUTION]: Provides shell commands for rendering Mermaid files to PNG images and performing batch processing on local files.
- [PROMPT_INJECTION]: Detected a surface for indirect prompt injection (Category 8). 1. Ingestion points: Processing of user-supplied .mmd files. 2. Boundary markers: No delimiters or warnings are specified for the input content. 3. Capability inventory: Access to shell execution via npx. 4. Sanitization: No sanitization of the Mermaid source is mentioned before execution.
Audit Metadata