remotion-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references downloading assets, documentation, and tools from trusted or well-known sources. It includes instructions for fetching Lottie animation data from lottiefiles.com and documentation from remotion.dev. Additionally, it utilizes the @remotion/install-whisper-cpp package to download Whisper.cpp binaries and models for transcription.
- [COMMAND_EXECUTION]: The skill contains several commands for project management and rendering that are standard for the framework. It provides npx remotion add commands for installing official extensions and npx remotion render for exporting videos. It also details a workflow for installing and running Whisper.cpp for speech-to-text processing.
- [SAFE]: The skill does not exhibit any malicious behaviors such as prompt injection, credential theft, or obfuscation. While it recommends processing external data (JSON, SRT, and media files), which represents a standard attack surface for media tools, the provided examples follow common development patterns. All activities are aligned with the skill's primary purpose of providing Remotion development guidance.
Audit Metadata