jianying-video-gen
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/jianying_worker.pyexecutes system-level commands to facilitate file downloads. - Evidence: Uses
subprocess.run(['curl', ...])to download the generated MP4 video from the service's CDN. - [CREDENTIALS_UNSAFE]: The skill requires the user to provide sensitive authentication data in a local file.
- Evidence: The script reads and processes browser session tokens from
cookies.jsonto authenticate the automated browser session. - [EXTERNAL_DOWNLOADS]: The skill programmatically downloads video content from external servers.
- Evidence: Video files are fetched from URLs discovered during the automation process on the
xyq.jianying.complatform.
Audit Metadata