image-generator
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection as it incorporates untrusted data from command-line arguments and external files into AI model messages.
- Ingestion points: Command-line arguments (
--prompt) and local JSON batch files inscripts/generate.py. - Boundary markers: Absent; input is directly interpolated into the request payload.
- Capability inventory: File system write access (for saving images) and network access to the Openrouter API.
- Sanitization: No validation or filtering is performed on the input content.
Audit Metadata