Skills
skills/inference-sh-9/skills/flux-image/Gen Agent Trust Hub

flux-image

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill allows the agent to execute infsh commands using the Bash tool to interact with the inference.sh API. This is the intended functionality for running remote image generation models.
  • [EXTERNAL_DOWNLOADS]: The skill documentation references the installation of the infsh CLI and additional skills from the vendor's official repository (inference-sh/skills). These are recognized as trusted vendor resources.
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection through the processing of user-provided image prompts.
  • Ingestion points: Untrusted user input is passed into the prompt field of the JSON input for the infsh app run command as seen in SKILL.md examples.
  • Boundary markers: Absent; there are no delimiters or instructions to the model to ignore potential commands embedded within the user's image prompt.
  • Capability inventory: The skill has the capability to execute commands on the inference.sh platform via the Bash tool.
  • Sanitization: The provided documentation does not include input validation or sanitization for the prompt strings.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 11:51 AM