Processing Media
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
fluent-ffmpeglibrary to execute theffmpegbinary for media operations. This is the primary intended functionality and follows established patterns for Node.js media tools.\n- [PROMPT_INJECTION]: The skill's surface for indirect prompt injection was analyzed:\n - Ingestion points: File paths and audio track names processed by the functions in
SKILL.md.\n - Boundary markers: No specific delimiters are used in the code examples to distinguish data from command parameters.\n
- Capability inventory: Spawns
ffmpegsubprocesses and interacts with the local file system for reading and writing media assets.\n - Sanitization: While not implemented in the code snippets, the documentation explicitly advises validating input formats and avoiding arbitrary untrusted files as a best practice.
Audit Metadata