Skills
skills/b-open-io/gemskills/section-dividers/Gen Agent Trust Hub

section-dividers

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The scripts/remove-bg.ts script interacts with the Replicate API (api.replicate.com) to perform AI-based background removal. It uploads local image data and downloads the resulting transparent PNG.
  • [COMMAND_EXECUTION]: Multiple scripts such as analyze-bg.ts, colorize.ts, and remove-bg.ts are designed to be executed locally via bun. These scripts use the sharp and pngjs libraries to perform image processing tasks. The skill also provides a Python snippet using the Pillow library for manual image fixing.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. Ingestion points: Untrusted user input is expected for placeholders like [SURFACE_CONTENT] and [UNDERGROUND_CONTENT] in prompt templates within SKILL.md and references/prompt-templates.md. Boundary markers: Absent; there are no delimiters to prevent embedded commands in user input from altering the image generation instructions. Capability inventory: The skill can execute local scripts and write files to the filesystem. Sanitization: Absent; no validation is performed on user-provided descriptions before interpolation.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 12:30 AM