Skills
skills/inference-sh-9/skills/nano-banana/Gen Agent Trust Hub

nano-banana

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides an installation command curl -fsSL https://cli.inference.sh | sh to set up the infsh CLI tool. This is a standard installation method provided by the vendor (inference-sh-9) for their official command-line interface and targets their own infrastructure.
  • [COMMAND_EXECUTION]: The skill requires the Bash tool to execute infsh commands, which are used to list apps and run image generation tasks via the inference.sh platform.
  • [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface as it processes user-provided prompts and image URLs. 1. Ingestion points: The prompt and images parameters in the infsh app run commands. 2. Boundary markers: Input is handled as structured JSON via the --input argument. 3. Capability inventory: The skill has the ability to execute shell commands via the Bash tool. 4. Sanitization: The skill does not describe any specific sanitization or filtering of the user-provided text before it is sent to the Gemini models.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 09:23 PM