Skills
skills/yemyat/background-remover-agent-skill/bg-remover/Gen Agent Trust Hub

bg-remover

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION] (MEDIUM): The skill utilizes a pattern of generating TypeScript code and piping it into the Bun runtime via heredocs (`bun run
  • << 'EOF'`). This dynamic execution of generated code is a medium-risk pattern.
  • [DATA_EXFILTRATION] (LOW): Local image data is uploaded to FAL.ai servers for processing (fal.storage.upload). While part of the intended functionality, it involves transferring local files to a third-party service.
  • [EXTERNAL_DOWNLOADS] (LOW): The skill performs network requests to download processed images from external FAL.ai storage URLs.
  • [COMMAND_EXECUTION] (LOW): The documentation suggests installing the Bun runtime globally (npm install -g bun). It correctly instructs the agent to seek user permission before proceeding.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 06:48 PM