Skills
skills/zpankz/obsidian-skills/dataview/Gen Agent Trust Hub

dataview

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill documents the ingestion of vault data, establishing an indirect prompt injection surface.
  • Ingestion points: The skill instructs the agent to index and process metadata, frontmatter, and content from vault files (SKILL.md).
  • Boundary markers: The instructions lack delimiters or constraints to prevent the agent from obeying instructions embedded in the ingested data.
  • Capability inventory: The documentation enables the agent to read file contents (dv.io.load) and execute JavaScript logic via DataviewJS.
  • Sanitization: No methods for validating or sanitizing retrieved vault information are provided.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 02:49 PM