product-hunt-launch
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the
infshcommand-line tool for automated operations including image generation (via Fal.ai) and web research (via Tavily and Exa). These tools are used for their intended purposes related to launch preparation. - [SAFE]: While the skill ingests external data from web searches (SKILL.md), which is a common surface for indirect prompt injection, it is assessed as safe because it serves as an instructional guide rather than an automated process. Ingestion points: Search results from Tavily and Exa (SKILL.md); Boundary markers: Not specified; Capability inventory: Subprocess calls via
infshand skill installation vianpx(SKILL.md); Sanitization: Not specified. - [SAFE]: No malicious patterns such as obfuscation, credential theft, or unauthorized persistence mechanisms were detected. External dependencies on
inference-sh/skillsare consistent with the trusted author context.
Audit Metadata