obsidian
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of instructional documentation and coding standards. It proactively warns developers against security risks like using
innerHTML(XSS) and provides guidance on preventing memory leaks through proper lifecycle management. - [COMMAND_EXECUTION]: The guidelines mention standard development commands such as
npx eslintfor static analysis and a local project initialization scripttools/create-plugin.js. These are routine developer workflows and are described in a benign context. - [EXTERNAL_DOWNLOADS]: The documentation recommends the use of standard, well-known development tools and libraries (e.g.,
eslint,typescript-eslint,eslint-plugin-obsidianmd) typically installed via official package registries.
Audit Metadata