image-workflow

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local shell script 'scripts/upload-public.sh' to process images and handle CDN uploads.
  • [COMMAND_EXECUTION]: Utilizes various shell commands including 'ls', 'base64', 'sha256sum', 'curl', and 'jq' for file handling, authentication, and API communication.
  • [EXTERNAL_DOWNLOADS]: Automates the installation of necessary sub-skills ('nano-banana' and 'internet-search') from the official Rebyte AI repository using a skill-installer.
  • [DATA_EXFILTRATION]: Uploads processed image data to the vendor's official artifact API ('api.rebyte.ai'). This is the intended behavior for generating public URLs for embedding images into dashboards or reports.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 05:38 PM
Security Audit — agent-trust-hub — image-workflow