video
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/generate_video.pyexecutesffmpegviasubprocess.runto strip audio from generated videos. The implementation uses a list-based argument structure which correctly avoids shell injection vulnerabilities. - [EXTERNAL_DOWNLOADS]: The skill downloads generated video content from Google's GenAI services. This is a core part of the skill's functionality and targets a well-known service (Google AI Studio).
- [SAFE]: The skill follows security best practices by recommending that users store sensitive API keys in environment variables or
.envfiles rather than hardcoding them.
Audit Metadata