json-canvas
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of Markdown documentation and JSON data structures. It does not include any Python, JavaScript, or shell scripts, nor does it define any tool calls that execute commands.
- [SAFE]: No security threats were identified. All external references point to legitimate documentation for the JSON Canvas specification or well-known services like Obsidian and GitHub.
- [DATA_EXPOSURE_AND_EXFILTRATION]: File paths used in examples (e.g., 'Attachments/diagram.png') are relative paths typical for Obsidian vaults and do not target sensitive system files or credentials.
Audit Metadata