Skills
skills/pika-labs/pika-plugins/founder-product-video/Gen Agent Trust Hub

founder-product-video

Pass

Audited by Gen Agent Trust Hub on Jun 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches media configuration and assets from the Pika CDN and MiniMax music service to build video components.
  • [COMMAND_EXECUTION]: Employs local ffmpeg as a utility to overlay lower-third graphics onto video frames when specialized cloud tools are not used.
  • [DATA_EXFILTRATION]: Uploads user-specified local imagery and brand kit assets to a public CDN to facilitate cloud-based video assembly and rendering.
  • [PROMPT_INJECTION]: The skill processes untrusted website data to generate scripts. * Ingestion point: SKILL.md Step [1] scrapes a user-provided product URL. * Boundary markers: No specific delimiters for the scraped content are present. * Capability inventory: High, involving multiple media generation tools. * Sanitization: No explicit content filtering or validation for the scraped data is mentioned.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 12, 2026, 07:43 PM
Security Audit — agent-trust-hub — founder-product-video