The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The skill provides instructions to install the belt CLI using a shell-piped remote script from https://cli.inference.sh. The skill also details a manual installation method that includes SHA-256 checksum and Sigstore signature verification for enhanced security.
[EXTERNAL_DOWNLOADS]: The CLI installer and manual installation process fetch binary assets and metadata from dist.inference.sh.
[COMMAND_EXECUTION]: The skill makes extensive use of the Bash tool to execute belt CLI commands for running models and managing AI tasks. It also suggests writing shell completion files to system directories, which may require elevated permissions.
[DATA_EXFILTRATION]: The CLI tool is designed to upload local files (e.g., images, video, audio) to the inference.sh cloud infrastructure. This is an intended and documented feature required for processing local assets with cloud-based AI models.
[PROMPT_INJECTION]: An indirect prompt injection surface exists as the agent processes data returned from external AI applications. Ingestion points: Results from belt app run and belt task get are incorporated into the agent context. Boundary markers: No specific delimiters or instructions to ignore embedded content are provided. Capability inventory: The agent has access to the Bash tool to execute belt commands. Sanitization: No explicit validation or filtering of the remote application output is described.

infsh-cli