Skills
skills/wemingt/obsidian-plugin-skill/obsidian-plugin-development/Gen Agent Trust Hub

obsidian-plugin-development

Warn

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing a companion tool via 'npx skills add gapmiss/obsidian-plugin-skill'. The source 'gapmiss' is an untrusted third-party repository, which may lead to the download of unvetted or malicious code.
  • [REMOTE_CODE_EXECUTION]: Guidelines suggest running a generator script via 'node /obsidian-plugin-creator/create-plugin.js'. This script is not provided in the analyzed file set, and its execution represents a risk of running unverified code.
  • [PROMPT_INJECTION]: The skill is intended to process external Obsidian plugin code, which introduces a surface for indirect prompt injection.
  • Ingestion points: Analyzes user-provided source files such as 'main.ts' and 'manifest.json' from external projects.
  • Boundary markers: The instructions lack markers or specific warnings to treat input code as untrusted data or separate guidelines from user data.
  • Capability inventory: The agent can suggest shell commands (npx, node) and utilizes the 'requestUrl' API for network operations.
  • Sanitization: No sanitization or validation logic is defined for the input source code or manifest files.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 1, 2026, 07:27 AM