varg-video-generation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): The skill handles API keys for AI providers (Fal.ai, ElevenLabs, Replicate, Groq). It implements best practices by adding
.envto.gitignoreand providing a setup script that manages keys locally without external transmission. - [COMMAND_EXECUTION] (SAFE): The skill requires
Bashaccess forbunandcatto initialize projects and check configuration. These commands are used for their intended purpose of project management and do not exhibit suspicious patterns. - [EXTERNAL_DOWNLOADS] (SAFE): Dependencies are managed through standard package managers (
bun add vargai). No piped remote scripts (e.g.,curl | bash) were detected.
Audit Metadata