knowledge-base-manager
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were detected. The skill primarily contains educational content and implementation guidelines for knowledge base management.
- [EXTERNAL_DOWNLOADS]: The reference material in
references/curation.mdincludes utility functions that demonstrate using the standardfetchAPI to retrieve content and check for updates from external sources. These operations are essential for the skill's primary purpose of knowledge curation and do not target sensitive local data. - [COMMAND_EXECUTION]: The skill provides SQL schema templates for
pgvectorand TypeScript snippets for database interaction. These snippets utilize parameterized queries, which is a standard security practice to prevent SQL injection vulnerabilities. - [DATA_EXPOSURE]: No hardcoded credentials, API keys, or sensitive file paths (e.g., SSH keys, environment files) were found in the skill files or code snippets.
- [INDIRECT_PROMPT_INJECTION]: While the skill describes processes for ingesting untrusted data from URLs, it also provides specific mitigation strategies such as HTML stripping, markdown normalization, and deduplication to sanitize content before processing.
Audit Metadata