pixel-art
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill's primary functionality is local image processing and video generation.
- [COMMAND_EXECUTION]: The skill uses subprocess.run to invoke the ffmpeg binary for video and GIF encoding. The implementation uses a list of arguments and avoids the use of a shell (shell=True), which follows security best practices for executing external commands.
- [EXTERNAL_DOWNLOADS]: The skill documentation and source code reference an external GitHub repository (github.com/Synero/pixel-art-studio) for attribution of palette data and animation logic. These references are static and do not involve runtime downloads or execution of untrusted remote code.
Audit Metadata