photo-content-recognition-curation-expert
Warn
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: MEDIUMREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill implements an indexing cache using Python's 'pickle' module. In references/photo-indexing.md, the load_cache function utilizes pickle.load() to deserialize the photo_index.pkl file. Use of pickle is considered a security risk because it allows for the execution of arbitrary code during the deserialization process if the input file has been modified by a malicious actor.
- [EXTERNAL_DOWNLOADS]: The skill automatically downloads pre-trained weights and configurations for various computer vision models from well-known technology services. Fetches DINOv2 model assets from the Hugging Face Hub (facebook/dinov2-base). Downloads CLIP model components from the official OpenAI repository on Hugging Face (openai/clip-vit-base-patch32). Retrieves YOLOv8 model weights (yolov8n.pt) via the Ultralytics library. Loads VGGface2 pre-trained weights through the facenet-pytorch package.
Audit Metadata