blitzreels-video-editing
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a transparent wrapper for the author's official API services and exhibits no malicious patterns.
- [COMMAND_EXECUTION]: The provided bash scripts (editor.sh and blitzreels.sh) interact with the API using curl. They use proper variable quoting and leverage jq for JSON construction to prevent shell or JSON injection vulnerabilities.
- [CREDENTIALS_UNSAFE]: Authentication is managed through the BLITZREELS_API_KEY environment variable. No hardcoded credentials or sensitive local file access (e.g., .ssh or .aws) were found.
- [EXTERNAL_DOWNLOADS]: Network activity is appropriately restricted to the vendor's official domain (blitzreels.com) for API operations and media management.
Audit Metadata