Skills
skills/yonatangross/orchestkit/demo-producer/Gen Agent Trust Hub

demo-producer

Warn

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies heavily on the Bash tool to execute external CLI utilities including vhs, remotion, asciinema, and manim. These tools are orchestrated via scripts like full-pipeline.sh to record terminal sessions and render video files.
  • [REMOTE_CODE_EXECUTION]: The skill performs dynamic script generation in scripts/generate.sh. It extracts metadata from local files (such as SKILL.md or agent.md) and injects these strings into new Bash scripts. Because the generator uses unquoted heredocs (<<), any shell-active characters (like backticks or $()) present in the source file's metadata will be executed as commands during the generation phase.
  • [DATA_EXFILTRATION]: The skill's documentation and instructions include hardcoded absolute filesystem paths (/Users/yonatangross/...) that reveal the author's internal directory structure and local username. While primarily a configuration oversight, this constitutes exposure of local system information.
Audit Metadata
Risk Level
MEDIUM
Analyzed
May 4, 2026, 05:09 PM