remotion-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing official Remotion packages (e.g., @remotion/three, @remotion/media, @remotion/lottie) from established registries. It also references fetching assets from well-known technology services like LottieFiles and Google Fonts.
- [COMMAND_EXECUTION]: Code examples include standard package management commands (e.g., npx remotion add) required to initialize framework extensions. These are routine development operations.
- [SAFE]: Data ingestion surfaces (e.g., fetching subtitle files or Lottie JSON) are used for their primary intended purpose in video creation and do not process untrusted data in a way that bypasses agent safety guidelines.
- [SAFE]: No evidence of credential exposure, obfuscation, privilege escalation, or persistence mechanisms was detected.
Audit Metadata