vss-generate-video-report
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
docker execto run shell commands and Python scripts within thevss-agentcontainer. This is used to discover environment variables such asHOST_IPandVLM_BASE_URLand to parse local YAML configuration files to determine model settings.\n- [EXTERNAL_DOWNLOADS]: Multiplecurlcommands are used to interact with local network services within the VSS stack, including VST (port 30888), VA-MCP (port 9901), and various VLM endpoints for health checks and data retrieval.\n- [PROMPT_INJECTION]: The skill processes untrusted incident data and VLM-generated descriptions which presents an indirect injection surface.\n - Ingestion points: Data is ingested from
video_analytics__get_incidents(SKILL.md) and VLM completions.\n - Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the report templates.\n
- Capability inventory: The skill can execute container commands via
docker execand perform network requests usingcurl.\n - Sanitization: Employs
jqfor basic JSON parsing but does not sanitize the text content of incidents or captions.
Audit Metadata