genimg
Warn
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFEDATA_EXFILTRATIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill instructs the user and agent to store API keys in plain text at
~/.genimg/config.jsonduring the setup process described inSKILL.md.\n- [DATA_EXFILTRATION]: The scriptscripts/generate.pyreads sensitive configuration data, including API keys, from the local file system at~/.genimg/config.json.\n- [EXTERNAL_DOWNLOADS]: The scriptscripts/generate.pyusesurllib.request.urlretrieveto download generated files from remote URLs provided by the API provider directly to a local file path.\n- [PROMPT_INJECTION]: The skill ingests untrusted prompts and image paths that are passed directly to external AI models without sanitization or boundary markers.\n - Ingestion points: The
--promptand--imagearguments inscripts/generate.pyaccept data from the agent context which may be derived from untrusted sources.\n - Boundary markers: No delimiters or warning instructions are used to wrap the prompt data before transmission.\n
- Capability inventory: The skill calls external APIs (network) and writes downloaded files to the local file system (file write).\n
- Sanitization: No input validation, escaping, or filtering is implemented for the provided prompt string.
Audit Metadata