nano-banana
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were detected in the skill's documentation or usage examples.
- [COMMAND_EXECUTION]: The skill executes Python scripts via the Bash tool to generate and edit images. These operations are restricted to the skill's internal scripts and follow expected usage patterns for an image generation extension.
- [CREDENTIALS_UNSAFE]: The skill utilizes environment variables (GOOGLE_API_KEY or GEMINI_API_KEY) for API authentication, which is a secure practice that avoids hardcoding secrets.
- [EXTERNAL_DOWNLOADS]: The skill references the 'google-genai' package, which is a legitimate library from a trusted organization (Google).
Audit Metadata