n8n-workflow-automation
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [PROMPT_INJECTION]: No instructions attempting to override agent behavior or bypass safety filters were found. The skill includes explicit guidance to prevent use cases aimed at bypassing security controls.
- [DATA_EXPOSURE_AND_EXFILTRATION]: No hardcoded credentials or sensitive file path access was identified. The safety section mandates the use of environment variables instead of literal secrets in generated JSON.
- [REMOTE_CODE_EXECUTION]: The skill generates static JSON and Markdown documentation; it does not download or execute code from external sources.
- [INDIRECT_PROMPT_INJECTION]: The skill exhibits an ingestion surface for untrusted data. • Ingestion points: The 'INPUTS' section of SKILL.md identifies 'Existing n8n workflow JSON' and 'Sample payloads' as valid inputs. • Boundary markers: No explicit delimiters are specified for these inputs. • Capability inventory: None. The skill's functionality is limited to generating text-based designs and JSON schemas, with no access to system commands, the network, or files. • Sanitization: No sanitization logic is described for user-provided payloads. The risk is assessed as safe due to the absence of dangerous capabilities.
Audit Metadata