infsh-cli
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill utilizes a common installation pattern that fetches a script from
https://cli.inference.shand executes it directly using the shell.\n- [EXTERNAL_DOWNLOADS]: The CLI installation process downloads binary executables, manifests, and checksums fromdist.inference.shto set up the tool on the local system.\n- [COMMAND_EXECUTION]: The instructions enable the agent to execute theinfshcommand within a Bash environment to interact with the platform's services.\n- [DATA_EXFILTRATION]: The CLI tool includes a feature to automatically upload local media files to the vendor's cloud infrastructure when a file path is provided in the input parameters, which is the intended mechanism for processing local data with the cloud-based AI models.
Audit Metadata