Skills
skills/1nfsh-s3/skills/ai-avatar-video/Gen Agent Trust Hub

ai-avatar-video

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides an installation command that pipes a remote script from the vendor's domain to the shell (curl -fsSL https://cli.inference.sh | sh). This is a standard setup procedure for the vendor's CLI tool.
  • [EXTERNAL_DOWNLOADS]: The installation process downloads architecture-specific binaries from dist.inference.sh. The skill includes documentation regarding integrity verification via SHA-256 checksums for these external resources.
  • [COMMAND_EXECUTION]: The skill requests access to the Bash tool to run the infsh CLI. The tool permission is scoped specifically to the vendor's command (Bash(infsh *)), adhering to the principle of least privilege.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 02:52 AM