video-comparer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill executes FFmpeg and FFprobe for video metadata extraction and frame comparison. The documentation explicitly states that all subprocess calls use argument lists and avoid shell=True, which are standard security measures to prevent command injection.
- EXTERNAL_DOWNLOADS (SAFE): The skill's interactive HTML report is described as using the 'img-comparison-slider' component via a CDN. This dependency is for the generated output report's user interface and does not involve the agent downloading or executing untrusted code during the skill's runtime.
- DATA_EXPOSURE (SAFE): The script includes built-in path validation to prevent directory traversal and checks for file existence and readability before processing. It also enforces maximum file size limits to prevent resource exhaustion attacks.
Audit Metadata