speech
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [Privilege Escalation] (MEDIUM): The file
references/codex-network.mdexplicitly instructs users on how to disable safety mechanisms in their environment. It suggests settingapproval_policy = "never"and enablingnetwork_access = truein the global config. This is a security-weakening recommendation that increases risk for the user's host system. - [Unverifiable Dependencies] (MEDIUM): The skill's primary functionality depends on
scripts/text_to_speech.py. This file was not provided for analysis. Without this source code, it is impossible to verify if the script safely handles shell arguments or contains malicious logic. - [Command Execution] (LOW): The skill frequently executes shell commands to run the Python CLI and manage temporary files. While it uses shell delimiters like
cat << 'JSONL'to reduce injection risks during batching, the overall pattern of dynamic command construction requires the missing script to have robust internal sanitization. - [External Downloads] (SAFE): The skill requires the standard
openailibrary. This is a trusted dependency from a public registry (PyPI).
Audit Metadata