twinmind-migration-deep-dive
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEDATA_EXFILTRATIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [DATA_EXFILTRATION]: The skill accesses the local file system using
fs.readdirSyncandfs.readFileSyncwithin theassessMigrationfunction inreferences/implementation.md. This is used to read meeting transcripts from a user-specified directory for migration purposes. - [EXTERNAL_DOWNLOADS]: The skill performs network requests to external APIs including
api.twinmind.com,api.fireflies.ai, andapi.rev.aito export and import meeting data. These are official endpoints for the services the skill integrates with. - [PROMPT_INJECTION]: There is a potential surface for indirect prompt injection as the skill ingests data from external APIs and local files (transcripts) which are then processed by the agent.
- Ingestion points: Local files via
dataPathinreferences/implementation.md; External APIsapi.fireflies.aiandapi.rev.ai. - Capability inventory: File system read access (
fs.readFileSync), network access (fetch,curl). - Boundary markers: None identified in the provided implementation code.
- Sanitization: The skill uses standard parsing logic (e.g.,
JSON.parseand VTT parsing) but does not specifically sanitize transcript content for adversarial prompt instructions.
Audit Metadata