Skills
skills/halt-catch-fire/skills/pitch-deck-visuals/Gen Agent Trust Hub

pitch-deck-visuals

Warn

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the user to install the belt-sh/cli package via npx and add multiple external skills from the inference-sh/skills repository, which involves downloading and executing software from unverified third-party sources.
  • [COMMAND_EXECUTION]: The skill instructions involve executing several local shell commands via the belt CLI, including belt login and belt app run commands.
  • [REMOTE_CODE_EXECUTION]: The skill utilizes the belt app run command to send and execute Python code and HTML templates on remote infrastructure via the infsh/python-executor and infsh/html-to-image services.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 19, 2026, 02:15 AM
Security Audit — agent-trust-hub — pitch-deck-visuals