properties
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is a utility for managing Obsidian note metadata through a local CLI tool. No malicious patterns such as unauthorized data exfiltration, obfuscation, or persistence mechanisms were detected.
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute obsidian CLI commands for reading and modifying note properties in SKILL.md. This is consistent with the skill's stated purpose.
- [PROMPT_INJECTION]: The skill handles user-controlled note metadata which represents a surface for indirect prompt injection. Ingestion points: metadata read via 'obsidian properties' command in SKILL.md. Boundary markers: none. Capability inventory: Bash tool used to run CLI commands in SKILL.md. Sanitization: none. The risk is assessed as minimal because the operations are restricted to metadata management.
Audit Metadata