markdown-editor
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is documentation management, including creating, editing, and formatting markdown files. All identified behaviors are consistent with this purpose.
- [COMMAND_EXECUTION]: The skill uses local shell commands (
mkdir -pandgit config user.name) for directory organization and retrieving the author's name. These commands are used for legitimate administrative tasks within the documentation workflow. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it reads existing markdown files to perform updates. Mandatory evidence chain: 1. Ingestion points: Existing markdown files are read during the edit process as documented in
references/document-types.md. 2. Boundary markers: No explicit delimiters or instructions to ignore embedded content are provided. 3. Capability inventory: The skill utilizesWrite,Edit, andBashtools as specified inSKILL.md. 4. Sanitization: No specific validation or sanitization is performed on the content read from files. This surface is inherent to file editors and is considered a low-risk factor in this context.
Audit Metadata