Skills
skills/usetemi/skills/pr-video-receipts/Gen Agent Trust Hub

pr-video-receipts

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes shell commands to facilitate its workflow.
  • Uses ffmpeg to convert video files from .webm to .mp4 for better compatibility in PR comments.
  • Employs the GitHub CLI (gh) to manage releases, upload video assets, and post comments via the GitHub API.
  • [REMOTE_CODE_EXECUTION]: Executes code through package managers and browser automation tools.
  • Recommends using npx @playwright/mcp@latest to load and run the Playwright MCP server.
  • Uses the browser_run_code tool to execute arbitrary JavaScript in the browser context for managing screencast annotations.
  • [EXTERNAL_DOWNLOADS]: Fetches necessary tools and libraries from well-known public sources.
  • Recommends installing the @playwright/mcp package from the npm registry.
  • Suggests installing the ffmpeg utility via system package managers like apt or brew.
  • [DATA_EXFILTRATION]: Transmits recorded video data from the local environment to GitHub.
  • Automates the upload of video files to GitHub draft releases as part of the PR verification process.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 02:18 AM