nano-banana
Fail
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [REMOTE_CODE_EXECUTION]: The installation instructions include a command to download and execute a script directly from 'https://bun.sh/install' by piping it to bash.
- [EXTERNAL_DOWNLOADS]: The skill clones the 'nano-banana-2-skill' repository from the author's GitHub account and executes 'bun install' to fetch additional software dependencies.
- [COMMAND_EXECUTION]: To facilitate installation, the skill modifies the user's shell configuration file (~/.zshrc) to update the system PATH, which acts as a persistence mechanism for the CLI tool.
- [CREDENTIALS_UNSAFE]: The setup process instructs the user to save their Gemini API key in a local hidden file (~/.nano-banana/.env) in plain text for the tool to use.
Recommendations
- HIGH: Downloads and executes remote code from: https://bun.sh/install - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata