remotion-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate instructions for video creation using the Remotion framework. All behaviors analyzed are consistent with the stated purpose of obtaining domain-specific knowledge for Remotion.
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of several official Remotion packages (e.g.,
@remotion/three,@remotion/media,@remotion/captions) and well-known libraries (e.g.,mapbox-gl,zod,@turf/turf). These are standard dependencies required for the described video processing and animation functionality. - [COMMAND_EXECUTION]: The rules include instructions for using
ffmpegandffprobevia the Remotion CLI for video trimming and metadata extraction. Additionally, it provides a Node.js script for audio transcription that executeswhisper.cpp. These operations are essential for the primary tasks of video creation and audio processing. - [CREDENTIALS_UNSAFE]: The skill mentions sensitive API keys for ElevenLabs and Mapbox. However, it correctly instructs the user to store these in a
.envfile and provides placeholder strings rather than hardcoding actual secrets. - [DATA_EXFILTRATION]: Network requests demonstrated in the examples target official and well-known APIs (e.g., ElevenLabs, Mapbox, LottieFiles) for functional purposes such as fetching animation data, speech-to-text generation, and map tile services.
Audit Metadata