timelapse-creator
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [DATA_EXPOSURE] (SAFE): The script only accesses user-provided directories for images and writes to a user-defined output path. There are no hardcoded credentials or unauthorized file system access patterns.
- [REMOTE_CODE_EXECUTION] (SAFE): No instances of remote script downloading, dynamic code execution (eval/exec), or untrusted package installation were found.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes external image files. While image processing always carries a theoretical risk of exploiting vulnerabilities in underlying media libraries (like ImageMagick or Pillow), the script includes basic extension filtering and performs standard operations consistent with its stated purpose.
- [COMMAND_EXECUTION] (SAFE): All operations are handled through library APIs; no arbitrary shell command execution was detected.
Audit Metadata