Skills
skills/zsxink/skills-hub/url-to-markdown/Gen Agent Trust Hub

url-to-markdown

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses the axios library to fetch content from user-provided URLs. While this is the primary purpose of the skill, it allows arbitrary network connections to any public URL.
  • [DATA_EXFILTRATION]: The network request implementation in scripts/url-to-markdown.js explicitly disables SSL certificate validation using rejectUnauthorized: false. This is an unsafe practice that makes the connection vulnerable to intercepting sensitive data or receiving malicious content via man-in-the-middle attacks.
  • [COMMAND_EXECUTION]: The skill uses fs.writeFileSync to save the converted Markdown to a local path provided by the user. While not directly executing commands, it allows writing files to the local filesystem based on user input.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 10:11 AM