Obsidian (Linux)
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent Obsidian helper, but it can read and change local vault notes and depends on a third-party CLI package.
This skill appears safe for its stated purpose if you trust notesmd-cli and are comfortable letting an agent access the selected Obsidian vault. Before installing, verify the CLI package source, be careful with overwrite/delete/move commands, and avoid using it on vaults containing information you do not want the agent to read.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could modify, move, overwrite, or delete Obsidian notes if the user asks or if intent is misunderstood.
The skill documents commands that can overwrite or delete persistent local notes. This is aligned with Obsidian automation, but these actions can cause data loss if used on the wrong vault or note.
notesmd-cli create "Folder/Note" --content "..." --overwrite # overwrite note ... notesmd-cli delete "path/note"
Confirm the vault and note path before destructive actions, prefer append/create workflows when possible, and keep backups or Obsidian sync/version history enabled.
Installing the helper means trusting the notesmd-cli package with local Obsidian vault operations.
The skill depends on an external third-party CLI package to perform vault operations. This is disclosed and purpose-aligned, but the installed binary will have access to the user's local notes.
brew | formula: yakitrak/yakitrak/notesmd-cli | creates binaries: notesmd-cli
Install notesmd-cli only from a trusted package source and review the package/maintainer before using it on sensitive vaults.
Private note contents could be shown to the agent during use, and note text could influence the conversation if not handled carefully.
The skill can bring local vault note contents into the agent's working context. Obsidian notes may contain private information or text that should be treated as data rather than trusted instructions.
notesmd-cli search-content "query" # search inside notes (shows snippets + lines) ... notesmd-cli print "path/note" # print note contents
Use this skill only with vaults you intend the agent to read, avoid exposing highly sensitive notes unnecessarily, and treat note contents as untrusted user data.