Skills
skills/youmind-openlab/skills/youmind-image-generator/Gen Agent Trust Hub

youmind-image-generator

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @youmind-ai/cli package from the official NPM registry, which is a required vendor tool for the skill's core functionality.
  • [COMMAND_EXECUTION]: Shell commands are used to invoke the youmind CLI for API interactions and node to run the included scripts/extract-images.js script for parsing results.
  • [DATA_EXFILTRATION]: The skill transmits image prompts to youmind.com to perform the generation. This network activity is documented as part of the primary service and targets the vendor's own API endpoints.
  • [SAFE]: The skill correctly handles sensitive information by instructing users to store their API keys in configuration files rather than hardcoding them or passing them directly through chat history.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 03:39 AM
Security Audit — agent-trust-hub — youmind-image-generator