flux-image
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
infshCLI tool to interact with the inference.sh platform for image generation tasks. Evidence: Found in theallowed-toolsconfiguration and multiple usage examples such asinfsh app run falai/flux-dev-lora. - [EXTERNAL_DOWNLOADS]: The skill references external installation commands for its dependencies from the official provider. Evidence: Recommends using
npx skills add inference-sh/skills@agent-toolsto install the required environment. - [PROMPT_INJECTION]: The skill handles user-provided prompts and URLs, which presents a surface for indirect prompt injection. Ingestion points: Data is accepted through the
promptandimage_urlfields in theinfshcommand JSON input. Boundary markers: Input data is encapsulated within a structured JSON payload. Capability inventory: The skill's actions are restricted to those provided by theinfshtool. Sanitization: No additional sanitization is performed on the prompt strings within the skill's static instructions.
Audit Metadata