mermaid
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): The skill is entirely composed of Markdown files providing reference documentation for Mermaid.js diagrams (Flowcharts, Sequence Diagrams, Gantt charts, etc.).
- NO_CODE (SAFE): No executable scripts (Python, JavaScript, Shell) are included in the skill, significantly reducing the attack surface.
- EXTERNAL_DOWNLOADS (SAFE): All included URLs point to legitimate documentation for Mermaid.js (mermaid.js.org, mermaid.ai) or represent standard placeholder domains used in syntax examples (github.com, atlassian.net, contoso.com). No downloads from untrusted sources or malicious domains were detected.
- DATA_EXFILTRATION (SAFE): There are no patterns indicating hardcoded credentials, access to sensitive file paths, or unauthorized network transmissions.
- PROMPT_INJECTION (SAFE): The content consists of structural and syntax instructions for generating diagrams. It does not contain commands to override system prompts, bypass safety filters, or extract system instructions.
Audit Metadata