generate-image
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection.
- Ingestion points: Untrusted user input is accepted via the
--promptargument inSKILL.md. - Boundary markers: Absent; there are no delimiters or instructions for the agent to sanitize the user input before processing.
- Capability inventory: The skill uses the
Bashtool to executegenerate-image.py. - Sanitization: Absent; the skill does not specify any validation or escaping mechanisms for the prompt string.
- [COMMAND_EXECUTION]: The skill relies on shell command execution to perform its primary function.
- It executes
python ~/.agents/tools/generate-image.pywith arguments derived from user input, which presents a risk of command injection if the agent does not properly escape the shell arguments. - [EXTERNAL_DOWNLOADS]: The skill documentation includes instructions to install a standard Python library.
- Recommends the installation of the well-known
requestspackage from the official Python Package Index (PyPI).
Audit Metadata