kling-3-0
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a Python runner script (
scripts/run.py) that users are instructed to execute locally. This script handles communication with the AI Skills API. - [DATA_EXFILTRATION]: The provided runner script transmits parameters and the
AISKILLS_API_KEYto the service endpoint athttps://ai-skills.ai. This is the intended behavior for interacting with the vendor's infrastructure. - [PROMPT_INJECTION]: The skill accepts external content through several input fields, creating a potential surface for indirect prompt injection:
- Ingestion points:
materialText,materialUrl, andmaterialFilefields defined inreferences/form-schema.json. - Boundary markers: None identified in the provided prompt configuration.
- Capability inventory: The
scripts/run.pyscript performs network requests to theai-skills.aidomain. - Sanitization: No explicit sanitization or filtering logic is present in the skill's local configuration.
Audit Metadata