video-inpainting
Pass
Audited by Gen Agent Trust Hub on Jul 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documents the installation of the official
@runcomfy/clipackage via the standard NPM registry. - [COMMAND_EXECUTION]: The execution environment is restricted to the
runcomfycommand through theallowed-toolsconfiguration, minimizing the risk of arbitrary shell command execution. - [SAFE]: The skill includes a dedicated security section addressing potential risks. It explicitly documents the location of authentication tokens (
~/.config/runcomfy/token.json) and explains the JSON-based input handling designed to prevent shell injection. - [PROMPT_INJECTION]: The skill provides a mandatory evidence chain for indirect prompt injection surface assessment:
- Ingestion points: The
video_urlfield in the CLI command input (SKILL.md). - Boundary markers: The skill uses JSON string passing to isolate inputs and provides explicit instructions for the agent to only ingest user-provided URLs.
- Capability inventory: Uses the
runcomfyCLI tool for video processing. - Sanitization: Relies on JSON encoding to avoid shell expansion of prompt or URL content.
Audit Metadata