audio-tts
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the 'subprocess.run' method with a list of arguments to execute the macOS 'say' and 'afconvert' utilities. This implementation avoids the use of 'shell=True', effectively protecting against shell injection attacks from user-provided text input.
- [COMMAND_EXECUTION]: The script allows for the specification of an 'output' file path. While this provides the capability to define where the audio file is saved, the action is restricted to the output of the 'afconvert' system tool and the skill performs standard directory creation as needed for the target path.
Audit Metadata