remotion
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches visual assets and project metadata from Stitch projects stored on Google Cloud Storage for use in video compositions.\n- [EXTERNAL_DOWNLOADS]: Downloads and installs official Remotion animation libraries and utilizes community skills from the remotion-dev GitHub repository.\n- [COMMAND_EXECUTION]: Employs shell scripts and Node.js package managers (npm, npx) to set up the video project environment and perform the final rendering of MP4 files.\n- [PROMPT_INJECTION]: Contains an indirect prompt injection surface where the skill parses HTML content from design screens to automatically generate text annotations.\n
- Ingestion points: The get_screen tool mentioned in SKILL.md retrieves htmlCode download URLs from external projects.\n
- Boundary markers: None identified in SKILL.md to delimit or ignore instructions within untrusted content.\n
- Capability inventory: Includes Write and Read tool access, Bash execution, and Remotion rendering tools (SKILL.md).\n
- Sanitization: The instructions in SKILL.md lack specific validation or sanitization steps for the text extracted from design assets before interpolation into video components.
Audit Metadata