Skills
skills/1nfsh-s3/skills/ai-avatar-video/Gen Agent Trust Hub

ai-avatar-video

Fail

Audited by Gen Agent Trust Hub on Feb 19, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION] (CRITICAL): The skill instructs the user to execute a remote script using curl -fsSL https://cli.inference.sh | sh. This allows an untrusted third party to execute arbitrary commands on the system.\n- [EXTERNAL_DOWNLOADS] (HIGH): The installation process downloads binaries from dist.inference.sh. Without pre-verification or a trusted source, this poses a significant supply-chain risk.\n- [COMMAND_EXECUTION] (MEDIUM): The skill uses the Bash tool to execute infsh commands, involving session management and remote data processing.\n- [PROMPT_INJECTION] (LOW): Vulnerable to indirect prompt injection. 1. Ingestion points: image_url and audio_url parameters in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Subprocess calls via Bash(infsh *). 4. Sanitization: No evidence of input validation or escaping for interpolated URLs.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 19, 2026, 08:21 PM