together-images
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill exposes an attack surface for indirect prompt injection.
- Ingestion points: The skill accepts untrusted data via the
promptandimage_urlparameters inscripts/generate_image.pyandscripts/generate_image.ts. - Boundary markers: No boundary markers or instructions to ignore embedded commands are present in the scripts before passing data to the API.
- Capability inventory: The skill possesses network communication capabilities (via the Together AI SDK) and local file-system write capabilities (
scripts/generate_image.pywrites binary data to a file). - Sanitization: No sanitization or validation of the input prompt or URL is performed before processing.
- Safety Bypass: The API reference and documentation explicitly mention the
disable_safety_checkerparameter, which allows bypassing NSFW filters. - [COMMAND_EXECUTION]: The script
scripts/generate_image.pycontains agenerate_and_savefunction that writes generated image data to a local file usingopen(output_path, "wb"). While the provided examples use benign paths, this capability could be used to overwrite local files if an agent is influenced to use a sensitive path as theoutput_pathargument. - [EXTERNAL_DOWNLOADS]: The skill requires the installation of external dependencies to function.
- Python: Requires the
togetherpackage. - Node.js: Requires the
together-aipackage. - These are recognized as official SDKs for a well-known service and are documented neutrally.
Audit Metadata