retrodiffusion
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: Employs shell commands such as
testandgrepto detect and validate the presence of required API keys in the local environment, ensuring the skill does not fail during execution. - [COMMAND_EXECUTION]: Relies on a local Node.js script (
scripts/retrodiffusion-generate.mjs) to handle the logic of constructing and sending requests to the image generation service. - [EXTERNAL_DOWNLOADS]: Establishes connections to
api.retrodiffusion.aito transmit prompts and receive generated imagery. This communication is essential for the skill's stated purpose and is well-documented within the API reference. - [SAFE]: Follows best practices for credential security by prompting the user for an API key at runtime and storing it in a local
.envfile, rather than using hardcoded values or transmitting secrets to unauthorized third parties.
Audit Metadata