yuque-personal-knowledge-connect
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it is designed to ingest and process data from external Yuque documents.\n
- Ingestion points: Document content is retrieved for analysis using the
yuque_get_doctool.\n - Boundary markers: The instructions do not specify the use of delimiters or explicit directives to ignore instructions that might be embedded within the documents being analyzed.\n
- Capability inventory: The skill possesses the ability to create new documents (
yuque_create_doc) and update existing ones (yuque_update_doc) based on the results of its analysis.\n - Sanitization: There are no documented steps for sanitizing or validating the document content before it is processed by the agent.\n- [NO_CODE]: This skill consists entirely of markdown-based instructions and metadata. It does not ship with any executable code, scripts, or binary files, and relies solely on the provided MCP tools.
Audit Metadata