Skills
skills/inference-sh-3/skills/image-to-video/Gen Agent Trust Hub

image-to-video

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill instructs the user to install the vendor's CLI tool by downloading and executing a script directly from https://cli.inference.sh using a shell pipe (curl ... | sh). This is a standard installation method for this developer tool.
  • [COMMAND_EXECUTION]: The skill uses the infsh CLI tool via Bash to interact with AI models. The execution is restricted to the infsh command as specified in the allowed-tools frontmatter.
  • [EXTERNAL_DOWNLOADS]: The skill references external binaries and checksums from dist.inference.sh and cli.inference.sh for tool installation and verification.
  • [DATA_EXPOSURE]: The skill uses a login command for the CLI tool. This is a standard authentication flow for the service and does not involve exfiltrating local system credentials.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 01:02 AM