cinematic-hyperframes-motion
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of plugins and motion design blocks from the Hyperframes (HeyGen) catalog and the author's official repository.
- [COMMAND_EXECUTION]: Orchestrates video production and validation tasks using the Hyperframes CLI, FFmpeg, and FFprobe.
- [PROMPT_INJECTION]: This skill presents an indirect prompt injection surface by ingesting external application code and design tokens to generate motion assets.
- Ingestion points: Inspects live application source code, design tokens, and UI components to establish "source truth" (SKILL.md).
- Boundary markers: No explicit delimiters or boundary instructions are defined for the code inspection phase.
- Capability inventory: The skill utilizes several CLI tools including Hyperframes, FFmpeg, and FFprobe for rendering and project validation (SKILL.md, references/hyperframes-catalog.md).
- Sanitization: The instructions explicitly direct the agent to replace real user data (emails, addresses, payments) with mock data before processing, reducing the risk of data exposure.
Audit Metadata