plantuml-image-generator
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches diagram images from the official PlantUML service. This is a well-known service used according to its intended purpose.
- [DATA_EXFILTRATION]: Sends user-defined diagram content to the PlantUML web service for rendering. This is necessary for the skill to function, but users should be cautious with sensitive information.
- [PROMPT_INJECTION]: Analyzes user requests to generate diagram code, representing a surface for indirect prompt injection.
- Ingestion points: User instructions for diagram creation in
SKILL.md. - Boundary markers: Absent.
- Capability inventory: The skill is restricted to returning Markdown image links.
- Sanitization: No input sanitization is performed prior to encoding.
Audit Metadata