Skills
skills/1nfsh-s3/skills/video-ad-specs/Gen Agent Trust Hub

video-ad-specs

Fail

Audited by Gen Agent Trust Hub on Feb 19, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION] (CRITICAL): The skill documentation includes the command curl -fsSL https://cli.inference.sh | sh in the Quick Start section of SKILL.md. This is a high-risk pattern that fetches and executes an unverified script from the internet directly in the user's shell, allowing for complete system compromise.
  • [EXTERNAL_DOWNLOADS] (HIGH): The skill relies on binaries and scripts hosted at cli.inference.sh and dist.inference.sh, which are not included in the pre-approved trusted source list.
  • [COMMAND_EXECUTION] (MEDIUM): The skill utilizes a Bash tool to run the infsh CLI and uses npx skills add to fetch further skills from external repositories, both of which introduce risks when associated with an untrusted installer.
  • [PROMPT_INJECTION] (LOW): Vulnerable to Indirect Prompt Injection (Category 8). The skill interpolates untrusted user-supplied prompts into infsh tool calls (seen in SKILL.md examples) without explicit sanitization, boundary markers, or warnings to the model to ignore embedded instructions.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 19, 2026, 08:24 PM