dreamina-video-first-end-frame
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- Data Exposure & Exfiltration (LOW): The script uses the
requestslibrary to communicate withjimeng.jianying.com. This domain is not included in the Trusted External Sources list. The function requires asessionidas an argument, which is then transmitted as a cookie header to this external domain. - Indirect Prompt Injection (LOW): The
promptparameter is interpolated directly into a JSON string sent to the external API without sanitization or boundary delimiters, which is a common surface for indirect prompt injection. - Ingestion points: The
promptargument in thefirst_end_frame_to_videofunction. - Boundary markers: No boundary markers or 'ignore' instructions are present in the code.
- Capability inventory: The skill utilizes
requests.postto transmit data to an external service. - Sanitization: No escaping, validation, or filtering is performed on the
promptor image URI inputs.
Audit Metadata