text-to-speech
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references established and official libraries such as 'elevenlabs' for Python and '@elevenlabs/elevenlabs-js' for Node.js, ensuring dependencies are from trusted sources.
- [COMMAND_EXECUTION] (SAFE): Documentation in 'references/streaming.md' includes a Python example using 'subprocess.Popen' to launch 'ffplay'. The implementation avoids shell execution and uses a fixed command list, which is a secure method for handling local media playback.
- [CREDENTIALS_UNSAFE] (SAFE): Credentials are not hardcoded. The skill mandates the use of environment variables (ELEVENLABS_API_KEY) for authentication, aligning with security best practices.
Audit Metadata