transcription
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes the
casedevCLI for its primary operations. The commands used (transcribe run,status,result,watch, andvault object upload) are appropriate for a transcription utility and do not show signs of arbitrary command injection or malicious intent. - [PROMPT_INJECTION] (LOW): This skill presents an indirect prompt injection surface as it ingests untrusted text from transcribed audio/video files.
- Ingestion points: Transcribed text returned by
casedev transcribe resultandcasedev transcribe watch. - Boundary markers: Absent. There are no instructions to delimit the transcript output or warn the agent about potentially malicious content within the transcription.
- Capability inventory: Local command execution via the
casedevCLI. - Sanitization: Absent. The skill does not perform any validation or escaping of the transcription output before presenting it to the agent.
Audit Metadata