mermaid-diagram
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists exclusively of Markdown documentation and syntax examples. No executable scripts, binaries, or configuration files are present.
- [PROMPT_INJECTION] (SAFE): No instructional overrides, jailbreak attempts, or system prompt extraction patterns were found.
- [INDIRECT_PROMPT_INJECTION] (INFO): The skill is designed to format user input into diagrams. Evidence: 1. Ingestion points: User input via prompt. 2. Boundary markers: Absent. 3. Capability inventory: Display only (no write or execute capabilities). 4. Sanitization: Absent. As the skill is for visual output only, the risk tier is minimal.
- [EXTERNAL_DOWNLOADS] (LOW): The skill documentation includes an example of embedding Mermaid in HTML via jsdelivr.net. This is a standard illustrative example for web developers and is not executed or required by the skill itself.
Audit Metadata