ai-image-generation
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [DATA_EXFILTRATION]: The script
scripts/run.pytransmits user-provided data including image goals, audience descriptions, and material content to the vendor's API athttps://ai-skills.ai. This behavior is the primary function of the skill and occurs over a secure connection to the developer's official domain. - [PROMPT_INJECTION]: The skill processes untrusted input from parameters such as
materialTextand external content retrieved viamaterialUrl. This presents a surface for indirect prompt injection (Category 8). - Ingestion points: User-provided strings and external URLs defined in
SKILL.mdandreferences/form-schema.jsonare interpolated into the API request. - Boundary markers: The documentation does not specify the use of delimiters or specific instructions for the model to ignore embedded commands in the input data.
- Capability inventory: The skill possesses network communication capabilities via
scripts/run.pyto interact with the AI Skills backend. - Sanitization: Static analysis does not reveal specific input validation or sanitization logic within the provided runner script.
Audit Metadata