songsee
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and installs the 'songsee' utility from a Homebrew tap (steipete/tap/songsee).
- [COMMAND_EXECUTION]: Uses the 'songsee' binary to process audio files and generate spectrograms or feature-panel visualizations.
- [PROMPT_INJECTION]: Ingests external audio data for processing, which presents an attack surface for indirect injection via malicious file content.
- Ingestion points: Audio files (track.mp3) processed by the CLI tool.
- Boundary markers: Not present.
- Capability inventory: Command execution and file system output through the songsee binary.
- Sanitization: Not specified.
Audit Metadata