speech
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a bundled Python script (
scripts/text_to_speech.py) to interface with the OpenAI API. This is the intended mechanism for the skill's functionality. - [CREDENTIALS_UNSAFE]: The skill requires an
OPENAI_API_KEY. Documentation explicitly instructs users to set this as an environment variable and warns against sharing the key in chat sessions, which is a recommended security practice. - [EXTERNAL_DOWNLOADS]: The skill depends on the
openaiPython package. This is a standard dependency for a well-known service (OpenAI) and is used for its primary purpose. - [DATA_EXFILTRATION]: User-provided text is sent to OpenAI's servers for audio synthesis. This is the core function of the skill and does not involve unauthorized access to sensitive local files or data.
Audit Metadata