Obsidian Vault Linker

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Obsidian note-linking helper that reads vault notes and can make approved Markdown/YAML relationship edits.

Install only if you are comfortable letting an agent read the selected Obsidian vault and edit Markdown/YAML relationship metadata. Keep backups or version control, review findings before writes for normal use, and use autonomous mode only with clear limits on folders, note counts, and relationship types.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 87% confidence
Finding: The skill directs the agent to run local shell commands (`which obsidian`, `obsidian version`, and other CLI subcommands) against the host environment. Even though the commands are framed as note-discovery helpers, they expand the skill from passive file analysis into host command execution, which is a meaningful increase in attack surface and is not necessary to achieve the stated core function of reading and linking Markdown/YAML notes.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal