Skills
skills/inference-sh-4/skills/storyboard-creation/Gen Agent Trust Hub

storyboard-creation

Fail

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • Remote Code Execution (HIGH): The skill utilizes the pattern curl -fsSL https://cli.inference.sh | sh. This method downloads a script from the internet and executes it immediately without any validation or integrity checks.
  • Command Execution (HIGH): Piping network data directly to a shell interpreter (| sh) bypasses security reviews and enables the remote server to execute any command with the user's current permissions.
  • External Downloads (HIGH): The download source https://cli.inference.sh is an untrusted external domain that is not included in the defined list of trusted organizations or repositories.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 18, 2026, 11:08 PM