obsidian-gtd
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [NO_CODE]: The skill is entirely documentation-based and contains no executable scripts or binaries.\n- [PROMPT_INJECTION]: The skill describes an integration pattern that processes external data, which is an inherent surface for indirect prompt injection, though no malicious intent is present.\n
- Ingestion points: Local Obsidian vault notes and remote GitHub issues as described in SKILL.md.\n
- Boundary markers: No specific delimiters or safety instructions for external content are defined.\n
- Capability inventory: Reading and writing files within the local Obsidian vault as defined in SKILL.md.\n
- Sanitization: Content validation or sanitization of ingested data is not specified.\n- [SAFE]: No direct prompt injections, obfuscation, or hardcoded credentials were detected in the skill content.
Audit Metadata