video-production
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION]: Executes the Remotion CLI from the npm registry to preview and render video content based on generated code.
- [COMMAND_EXECUTION]: Utilizes shell commands
npx remotion previewandnpx remotion renderto manage the video production lifecycle. - [EXTERNAL_DOWNLOADS]: Fetches the Remotion framework components using the standard npx command from the public npm registry.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. Ingestion points: User-provided text instructions for video specifications and scene planning in SKILL.md. Boundary markers: Absent; no specific delimiters or ignore instructions are used to isolate user input from the logic. Capability inventory: The skill can execute shell commands and generate executable React code (
src/Video.tsx). Sanitization: No input sanitization or validation is described before processing user instructions into the code and scene plan.
Audit Metadata