ha-automations
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a documentation resource for Home Assistant automations. All code snippets are illustrative examples for local configuration.
- [INDIRECT_PROMPT_INJECTION]: The skill manages Home Assistant configuration files, representing a potential surface for indirect prompt injection if those files contain untrusted data.
- Ingestion points: config/automations.yaml, config/scripts.yaml, config/scenes.yaml.
- Boundary markers: Not specified in the instruction set.
- Capability inventory: File write and edit capabilities through the Edit, Write, and TodoWrite tools.
- Sanitization: No explicit sanitization or validation of configuration data is described.
Audit Metadata