Skills
skills/inference-sh-3/skills/nano-banana-2/Gen Agent Trust Hub

nano-banana-2

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides instructions to install the inference.sh CLI by piping a remote script from https://cli.inference.sh directly into the shell (sh). This is a standard installation pattern for the vendor's tooling.
  • [EXTERNAL_DOWNLOADS]: The installation process downloads platform-specific binaries and SHA-256 checksums from dist.inference.sh to facilitate the execution of image generation tasks.
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool to run the infsh command-line utility. The execution is limited to the infsh command through the allowed-tools configuration, which follows the principle of least privilege.
  • [PROMPT_INJECTION]: The skill ingests user-provided text via the prompt parameter to drive image generation. This constitutes a surface for indirect prompt injection where malicious instructions could be embedded in data processed by the model, although the impact is limited by the skill's narrow scope and tool restrictions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 01:02 AM