obsidian-data-importer
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- PROMPT_INJECTION (MEDIUM): High susceptibility to Indirect Prompt Injection (Category 8). Ingestion points: Untrusted CSV and JSON data processed for parsing and analysis in 'core/phase-1-ingestion.md'. Boundary markers: Absent; the processing logic does not instruct the agent to use delimiters or warnings to ignore instructions found within data values. Capability inventory: The agent analyzes data and generates templates and notes which are intended for file system persistence in an Obsidian vault. Sanitization: While the skill provides documentation for YAML syntax safety ('knowledge/yaml-safety.md'), it lacks mechanisms to filter or sanitize Natural Language instructions embedded in the data fields.
- EXTERNAL_DOWNLOADS (LOW): The 'README.md' recommends the manual installation of an external Obsidian plugin ('JSON/CSV Importer') from an unverified source without providing a repository URL or verified identifier.
Audit Metadata