tao-train-depth-anything-v2
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches pre-trained backbone weights from a public asset storage service for model initialization.
- Evidence:
references/spec-param-inference.mdcontains a structured reference to download weights fromhttps://dl.fbaipublicfiles.com/dinov2/dinov2_vitl14/dinov2_vitl14_pretrain.pth. - [COMMAND_EXECUTION]: Provides metadata and instructions for the agent to execute the
depth_netCLI and Docker commands to manage the training and deployment lifecycle of AI models. - Evidence:
references/skill_info.yamldefines several actions liketrain,evaluate, andinferencethat execute shell commands. - [INDIRECT_PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests untrusted dataset annotation files to be processed by CLI tools.
- Ingestion points: Dataset annotation files (
annotations.txt) processed inSKILL.mdandreferences/spec-overrides.md. - Boundary markers: Absent.
- Capability inventory: Shell command execution via the
depth_nettool defined inreferences/skill_info.yaml. - Sanitization: Absent.
- [SAFE]: No malicious behavior, obfuscation, or unauthorized access to sensitive system information was detected. All activities are well-documented and align with the primary purpose of AI model development.
Audit Metadata