Skills
skills/higgsfield-ai/skills/higgsfield-product-photoshoot/Gen Agent Trust Hub

higgsfield-product-photoshoot

Fail

Audited by Gen Agent Trust Hub on May 6, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides instructions to download and execute the Higgsfield CLI installation script from the vendor's GitHub repository using a pipe-to-shell command (| sh).
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool to run CLI commands for generating images based on user input.
  • [EXTERNAL_DOWNLOADS]: Fetches the CLI installation script from the author's official GitHub repository during the bootstrap process.
  • [PROMPT_INJECTION]: User-provided intent is interpolated directly into shell command arguments, creating a surface for indirect prompt injection. 1. Ingestion points: Responses collected during the interview phase described in SKILL.md. 2. Boundary markers: Absent; user input is placed within double quotes in the shell command template. 3. Capability inventory: Execution of Bash commands to interact with the Higgsfield CLI. 4. Sanitization: No evidence of input validation or escaping is described for user-provided strings before interpolation.
Recommendations
  • HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/higgsfield-ai/cli/main/install.sh - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
May 6, 2026, 03:41 PM