nano-banana-edit
Pass
Audited by Gen Agent Trust Hub on Jul 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of an external global npm package,
@runcomfy/cli, to interface with the RunComfy Model API. - [COMMAND_EXECUTION]: The instructions direct the agent to invoke the
runcomfycommand-line tool to perform image editing tasks. - [PROMPT_INJECTION]: The skill processes external image URLs, which are documented as potential vectors for indirect prompt injection.
- Ingestion points:
image_urlsparameter in theruncomfy runcommand. - Boundary markers: Prompt instructions and external URLs are encapsulated within a JSON string passed to the CLI.
- Capability inventory: The agent uses shell command execution via the
runcomfyCLI to interact with remote models. - Sanitization: The CLI handles JSON encoding of the input to mitigate shell injection risks.
Audit Metadata