Skills
skills/zc277584121/marketing-skills/video-to-gif/Gen Agent Trust Hub

video-to-gif

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on executing external binaries (ffmpeg, ffprobe, and gifsicle) to perform media processing.
  • The implementation uses subprocess.run() with argument lists rather than shell strings, which effectively prevents shell injection vulnerabilities.
  • User-provided parameters such as frame rate, width, and color counts are strictly typed as integers or floats via argparse, preventing injection into processing filters.
  • [EXTERNAL_DOWNLOADS]: The skill documentation identifies FFmpeg and gifsicle as prerequisites. It does not attempt to download or install these tools automatically, nor does it fetch any remote scripts or assets during execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 09:35 AM