slidev-plantuml
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill utilizes the
!includedirective to load C4-PlantUML templates fromhttps://raw.githubusercontent.com/plantuml-stdlib/C4-PlantUML/master/. While this is standard practice for C4 diagrams, the domain is an external resource not on the predefined trusted organization list. - DATA_EXFILTRATION (LOW): The configuration example in
setup/plantuml.tspoints tohttps://www.plantuml.com/plantuml. This means diagram source code is sent to a public third-party server for rendering, which may be a concern for sensitive architectural data. - INDIRECT_PROMPT_INJECTION (LOW): The skill defines a surface for processing untrusted PlantUML code.
- Ingestion points: Markdown code blocks within the Slidev environment.
- Boundary markers: Absent; the skill does not specify delimiters or sanitization for user-provided diagram content.
- Capability inventory: The skill enables network requests to external rendering servers (e.g., plantuml.com).
- Sanitization: Absent; PlantUML code is passed directly to the renderer.
Audit Metadata