Skills
skills/inference-sh-9/skills/email-design/Gen Agent Trust Hub

email-design

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references an installation script at https://cli.inference.sh. This URL belongs to the skill author's infrastructure and is used to distribute the necessary infsh CLI tool.
  • [REMOTE_CODE_EXECUTION]: The Quick Start section includes a command to pipe a remote script from https://cli.inference.sh directly into the shell (sh). This is the documented installation method for the vendor's utility.
  • [COMMAND_EXECUTION]: The skill utilizes the infsh command-line interface to execute image generation tasks and npx to manage skill dependencies.
  • [PROMPT_INJECTION]: The skill uses tools that process user-provided strings and HTML for image generation, creating a surface for indirect prompt injection.
  • Ingestion points: Markdown examples show interpolation of HTML and text prompts into infsh app run JSON inputs.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the templates.
  • Capability inventory: The skill is granted permission to run the infsh CLI via the Bash tool.
  • Sanitization: No sanitization or validation of the input strings is performed within the provided skill definition.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 05:35 PM