Skills
skills/yusufferdogan/personal-brand-video-skill/personal-brand-video/Gen Agent Trust Hub

personal-brand-video

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (MEDIUM): The skill instructions in README.md and SKILL.md prompt the user to execute npx skills add https://github.com/remotion-dev/skills. The organization remotion-dev is not included in the 'Trusted GitHub Organizations' list, making this an unverified external download.
  • [REMOTE_CODE_EXECUTION] (MEDIUM): Suggesting the installation of a skill via a remote URL (using npx skills add) allows for the fetching and execution of remote logic. Since the source is not a pre-approved trusted repository, there is a risk that the remote content could contain malicious instructions or scripts.
  • [PROMPT_INJECTION] (SAFE): The instructions follow a clear workflow for video creation and do not contain patterns typical of prompt injection or safety bypass attempts.
  • [DATA_EXFILTRATION] (SAFE): No evidence of unauthorized network calls, hardcoded credentials, or sensitive file access was found within the analyzed files.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 06:32 PM