remotion-video-production
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute Remotion CLI commands, such as
npx remotion previewandnpx remotion render. This is a standard operation for the intended purpose of video generation. - [REMOTE_CODE_EXECUTION]: The skill generates TypeScript React (
tsx) code for video compositions and executes it using the Remotion environment. This involves dynamic code generation and execution which is intrinsic to the 'programmable video' use case. - [PROMPT_INJECTION]: The skill processes user-provided natural language prompts to create video specifications, scene plans, and code structures.
- Ingestion points: User prompts defining video goals, duration, and content (Step 1 and Examples).
- Boundary markers: Prompts are typically contained within markdown blocks, but there are no explicit instructions to ignore embedded commands within the processed text.
- Capability inventory: The skill possesses the ability to execute shell commands (
Bash), write files (Write), and read project assets (Read). - Sanitization: No explicit sanitization or validation of the input prompt or the resulting generated code is defined in the skill instructions.
Audit Metadata