ai-video-production-master
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect prompt injection surface detected. The skill ingests untrusted data from the web and possesses capabilities to execute shell commands and modify files. * Ingestion points: WebFetch and Firecrawl tools. * Boundary markers: None. * Capability inventory: Bash (python, ffmpeg, npm), Write, and Edit. * Sanitization: None.
- [COMMAND_EXECUTION] (LOW): The skill is granted access to the Bash tool for python scripts and ffmpeg operations. This is necessary for the skill's primary function but increases the potential impact of an injection attack.
Audit Metadata