qwen-image-2

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references the installation of the belt-sh/cli via npx and provides links to official installation guidelines and documentation hosted on inference.sh and its associated GitHub repository.
  • [COMMAND_EXECUTION]: The skill uses the belt CLI tool for its primary operations. It employs a security best practice by using the allowed-tools frontmatter field to restrict the execution environment to only allow the belt command.
  • [INDIRECT_PROMPT_INJECTION]: The skill ingests user-provided text prompts for image generation. While this is an entry point for untrusted data, the skill's restricted execution scope (limited to the belt command) and the nature of image generation tasks minimize the associated risks.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 04:46 PM