remotion-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [External Downloads] (LOW): The skill documentation recommends the installation of several scoped packages (e.g.,
@remotion/three,@remotion/media,@remotion/captions). These are official extensions for the Remotion framework and are considered reputable. - [Data Exfiltration] (LOW): Multiple files (e.g.,
rules/calculate-metadata.md,rules/lottie.md,rules/import-srt-captions.md) provide code examples using thefetch()API to retrieve remote content like JSON metadata, Lottie animations, or subtitle files. These are documented implementation patterns for dynamic video rendering and do not involve unauthorized data transmission. - [Indirect Prompt Injection] (LOW): The skill establishes patterns for ingesting untrusted data from external sources (e.g., fetching from
props.dataUrl). While this creates an attack surface for indirect prompt injection if the ingested content is subsequently processed by an LLM without sanitization, it is an inherent property of the framework's data-driven capabilities. - Ingestion points:
rules/calculate-metadata.md(props.dataUrl),rules/lottie.md(URL fetch),rules/import-srt-captions.md(URL fetch). - Boundary markers: Absent in code examples.
- Capability inventory: The skill allows for network fetching and rendering logic within a React environment; no direct shell execution or filesystem write capabilities are present in the provided code.
- Sanitization: Not present in the provided examples.
Audit Metadata