ai-image-generator
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute Python scripts and curl commands for verifying model availability and generating images. This includes a pattern where API output is piped to a local Python command for parsing, which is safe given the trusted source.\n- [EXTERNAL_DOWNLOADS]: Downloads model information and generated media files from well-known services (Google and OpenAI). These operations are essential for the skill's primary function and use official, secure endpoints.\n- [DATA_EXFILTRATION]: Accesses GEMINI_API_KEY and OPENAI_API_KEY from the environment. The skill logic ensures these credentials are only sent to the respective trusted providers (Google and OpenAI) for authentication.
Audit Metadata