Skills
skills/richfrem/project_sanctuary/sanctuary-obsidian-integration/Gen Agent Trust Hub

sanctuary-obsidian-integration

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes markdown files from an Obsidian vault, which creates a potential surface for indirect prompt injection.
  • Ingestion points: Markdown files processed via the local parser.py script and vault CRUD operations.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the glue layer.
  • Capability inventory: The skill has capabilities for local file read/write and script execution via the underlying plugin.
  • Sanitization: There is no evidence of sanitization or content validation before processing vault data.
  • [COMMAND_EXECUTION]: The skill invokes a local Python script (plugins/obsidian-integration/obsidian-parser/parser.py) to validate the structure of markdown files. This script execution is a standard functional component of the vault integration.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 07:30 AM