Skills
NYC
skills/johnlindquist/claude-workshop-skills/diagram/Gen Agent Trust Hub

diagram

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (LOW): The skill is authorized to use the Bash tool to perform operations such as directory management and git-based audits. While consistent with the skill's primary purpose, this provides a surface for shell command execution on the host system.\n- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection because it ingests and processes content from user-editable files.\n
  • Ingestion points: Markdown files within the ai/diagrams/ directory and documentation in references/ are read during the Update and Audit workflows.\n
  • Boundary markers: Absent; there are no instructions to use specific delimiters or to disregard instructions embedded within the diagram data.\n
  • Capability inventory: The agent has access to Bash, Glob, Read, Write, and Edit tools while processing these files.\n
  • Sanitization: Absent; diagram content is analyzed directly for quality and synchronization without escaping or sanitization.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:04 PM