seedance-2-video-gen
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Credential Handling: The skill uses the
EVOLINK_API_KEYenvironment variable for authentication, which is a standard and secure method for providing credentials to CLI-based agents without hardcoding secrets. - [SAFE]: Network Operations: Network activity is limited to communicating with the author's official API domain (
api.evolink.ai) for video generation and task status polling. - [SAFE]: Command Injection Prevention: The main execution script
scripts/seedance-gen.shcorrectly usesjqwith the--argparameter to build JSON payloads. This ensures that any user-supplied content, such as prompts or image URLs, is safely escaped and cannot be used to perform shell command injection. - [SAFE]: External Dependencies: The skill relies on standard, well-known system utilities (
curlandjq) and does not download or execute any unverified remote scripts or third-party packages.
Audit Metadata