remotion
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill serves as a legitimate technical guide for the Remotion React-based video creation framework.
- [EXTERNAL_DOWNLOADS]: The skill provides instructions for installing necessary dependencies from well-known registries. These include official Remotion modules (@remotion/three, @remotion/media, @remotion/captions, @remotion/google-fonts, @remotion/fonts, @remotion/gif, @remotion/lottie, @remotion/layout-utils, @remotion/zod-types, @remotion/transitions), Mapbox GL (mapbox-gl), geospatial tools (@turf/turf), and schema validation (zod).
- [COMMAND_EXECUTION]: Includes standard CLI commands for project initialization (
npx create-video@latest), package management (remotion add,npm i,yarn add,pnpm i), and rendering (remotion render). These commands are essential for the framework's normal operation. - [DATA_EXPOSURE_AND_EXFILTRATION]: The skill follows security best practices for handling sensitive keys. For Mapbox integration, it correctly instructs users to store access tokens in a
.envfile rather than hardcoding them in scripts. - [SAFE]: The skill utilizes
mediabunny, a common utility library in the Remotion ecosystem for metadata and frame extraction, which is considered standard for this domain.
Audit Metadata