qwen-image-2-pro
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the 'infsh' command-line utility to communicate with the image generation backend. These commands are legitimate and necessary for the skill's primary function of image creation.
- [EXTERNAL_DOWNLOADS]: References the 'inferencesh' Python library and the 'infsh' CLI tool. Both are verified vendor resources from the skill's publisher.
- [PROMPT_INJECTION]: The skill incorporates user-provided text prompts into shell commands for image generation. It follows safe patterns by encapsulating these inputs within JSON structures and using proper quoting in its examples to mitigate command injection risks.
Audit Metadata