flowzap-diagrams
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions for users to install the 'flowzap-mcp' server (version 1.3.5) from the NPM registry. This is a standard setup procedure for the Model Context Protocol (MCP) functionality described in the skill.
- [DATA_EXFILTRATION]: Use of the 'flowzap_create_playground' tool involves transmitting diagram definitions to the vendor's external service ('flowzap.xyz') to generate web-based previews. This behavior is documented as a primary feature for sharing diagrams.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection via the 'flowzap_artifact_to_diagram' tool, which is designed to parse potentially untrusted external data such as HTTP logs or OpenAPI specifications.
- Ingestion points: The 'flowzap_artifact_to_diagram' tool processes external files, logs, and code snippets.
- Boundary markers: The skill does not define specific delimiters to isolate untrusted data during the parsing and conversion process.
- Capability inventory: The skill can validate syntax and interact with external web services for playground creation.
- Sanitization: No explicit sanitization or filtering of input content is mentioned in the provided instructions.
Audit Metadata