comfyui-workflow-builder
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were detected in the skill instructions. The skill follows a logical process of mapping user intent to structured JSON outputs while validating against a local inventory file.
- [EXTERNAL_DOWNLOADS]: The skill metadata specifies requirements for 'curl' and 'wget'. These are listed as environment dependencies, likely for API communication with a ComfyUI instance (defined via the COMFYUI_URL environment variable), but no untrusted or remote code execution patterns were identified.
- [COMMAND_EXECUTION]: While the skill generates 'executable' JSON, these are data configurations for the ComfyUI application and do not involve direct shell command execution or system-level manipulation.
Audit Metadata