remix-chatgpt-ad-from-sample
Pass
Audited by Gen Agent Trust Hub on Jul 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes
ffmpegfor video encoding, scaling, and metadata extraction, andnpx playwrightfor browser-based UI recording. These are essential tools for its primary function of video generation. - [REMOTE_CODE_EXECUTION]: The skill executes a local Node.js script (
record-master.js) to manage the recording workflow. It dynamically setsNODE_PATHto resolve modules from sibling 'atoms' (component skills) within the same repository, which is a standard pattern for the platform's modular architecture. - [DATA_EXFILTRATION]: The skill reads project configuration and brand research from the local
agent-config/brands/directory. It uploads finished video files and thumbnails usingauthorizedget_upload_urlandPUToperations to the platform's storage service. These actions are restricted to the user's project context. - [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data from external advertisement templates (
recipe.conversation) and user-provided creative 'angles'. While this constitutes an attack surface for indirect prompt injection, the risk is inherent to the skill's purpose of remixing content. The instructions mandate that the AI rewrite the conversation and perform compliance checks to prevent data leakage.
Audit Metadata