image-workflow
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local shell script 'scripts/upload-public.sh' to process images and handle CDN uploads.
- [COMMAND_EXECUTION]: Utilizes various shell commands including 'ls', 'base64', 'sha256sum', 'curl', and 'jq' for file handling, authentication, and API communication.
- [EXTERNAL_DOWNLOADS]: Automates the installation of necessary sub-skills ('nano-banana' and 'internet-search') from the official Rebyte AI repository using a skill-installer.
- [DATA_EXFILTRATION]: Uploads processed image data to the vendor's official artifact API ('api.rebyte.ai'). This is the intended behavior for generating public URLs for embedding images into dashboards or reports.
Audit Metadata